{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,28]],"date-time":"2025-10-28T05:57:46Z","timestamp":1761631066701,"version":"3.41.2"},"reference-count":43,"publisher":"Emerald","issue":"2","license":[{"start":{"date-parts":[[2024,8,8]],"date-time":"2024-08-08T00:00:00Z","timestamp":1723075200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.emerald.com\/insight\/site-policies"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["ICS"],"published-print":{"date-parts":[[2025,4,29]]},"abstract":"<jats:sec>\n<jats:title content-type=\"abstract-subheading\">Purpose<\/jats:title>\n<jats:p>This study aimed to investigate how honest participants perceived an attacker to be during shoulder surfing scenarios that varied in terms of which Principle of Persuasion in Social Engineering (PPSE) was used, whether perceived honesty changed as scenarios progressed, and whether any changes were greater in some scenarios than others.<\/jats:p>\n<\/jats:sec>\n<jats:sec>\n<jats:title content-type=\"abstract-subheading\">Design\/methodology\/approach<\/jats:title>\n<jats:p>Participants read one of six shoulder surfing scenarios. Five depicted an attacker using one of the PPSEs. The other depicted an attacker using as few PPSEs as possible, which served as a control condition. Participants then rated perceived attacker honesty.<\/jats:p>\n<\/jats:sec>\n<jats:sec>\n<jats:title content-type=\"abstract-subheading\">Findings<\/jats:title>\n<jats:p>The results revealed honesty ratings in each condition were equal during the beginning of the conversation, participants in each condition perceived the attacker to be honest during the beginning of the conversation, perceived attacker honesty declined when the attacker requested the target perform an action that would afford shoulder surfing, perceived attacker honesty declined more when the Distraction and Social Proof PPSEs were used, participants perceived the attacker to be dishonest when making such requests using the Distraction and Social Proof PPSEs and perceived attacker honesty did not change when the attacker used the target\u2019s computer.<\/jats:p>\n<\/jats:sec>\n<jats:sec>\n<jats:title content-type=\"abstract-subheading\">Originality\/value<\/jats:title>\n<jats:p>To the best of the authors\u2019 knowledge, this experiment is the first to investigate how persuasion tactics affect perceptions of attackers during shoulder surfing attacks. These results have important implications for shoulder surfing prevention training programs and penetration tests.<\/jats:p>\n<\/jats:sec>","DOI":"10.1108\/ics-07-2023-0118","type":"journal-article","created":{"date-parts":[[2024,8,6]],"date-time":"2024-08-06T07:03:49Z","timestamp":1722927829000},"page":"267-283","source":"Crossref","is-referenced-by-count":2,"title":["The effects of persuasion principles on perceived honesty during shoulder surfing attacks"],"prefix":"10.1108","volume":"33","author":[{"given":"Keith S.","family":"Jones","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"McKenna K.","family":"Tornblad","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Miriam E.","family":"Armstrong","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jinwoo","family":"Choi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Akbar","family":"Siami Namin","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"140","published-online":{"date-parts":[[2024,8,8]]},"reference":[{"key":"key2025042814040624400_ref001","doi-asserted-by":"publisher","DOI":"10.1109\/icacs47775.2020.9055943","article-title":"Preventive techniques of phishing attacks in networks","volume-title":"2020 3rd International Conference on Advancements in Computational Sciences (ICACS)","year":"2020"},{"issue":"50","key":"key2025042814040624400_ref002","doi-asserted-by":"crossref","first-page":"19","DOI":"10.5120\/ijca2019919411","article-title":"A taxonomy for social engineering attacks via personal devices","volume":"178","year":"2019","journal-title":"International Journal of Computer Applications"},{"issue":"2","key":"key2025042814040624400_ref003","doi-asserted-by":"publisher","first-page":"275","DOI":"10.1177\/00187208211012818","article-title":"How perceptions of caller honesty vary during vishing attacks that include highly sensitive or seemingly innocuous requests","volume":"65","year":"2023","journal-title":"Human Factors: The Journal of the Human Factors and Ergonomics Society"},{"issue":"4","key":"key2025042814040624400_ref004","doi-asserted-by":"publisher","first-page":"563","DOI":"10.1086\/267745","article-title":"Dimensions for evaluating the acceptability of message sources","volume":"33","year":"1969","journal-title":"Public Opinion Quarterly"},{"issue":"3","key":"key2025042814040624400_ref005","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1016\/s1353-4858(19)30032-7","article-title":"Accenture\/Ponemon Institute: the cost of cybercrime","volume":"2019","year":"2019","journal-title":"Network Security"},{"key":"key2025042814040624400_ref006","first-page":"849","article-title":"Social engineering","year":"2020","journal-title":"The Palgrave Handbook of International Cybercrime and Cyberdeviance"},{"issue":"1","key":"key2025042814040624400_ref007","doi-asserted-by":"crossref","first-page":"97","DOI":"10.1007\/s11292-014-9222-7","article-title":"The persuasion and security awareness experiment: reducing the success of social engineering attacks","volume":"11","year":"2015","journal-title":"Journal of Experimental Criminology"},{"issue":"3","key":"key2025042814040624400_ref008","doi-asserted-by":"publisher","first-page":"309","DOI":"10.1016\/j.pec.2008.12.003","article-title":"A practitioner\u2019s guide to persuasion: an overview of 15 selected persuasion theories, models and frameworks","volume":"74","year":"2009","journal-title":"Patient Education and Counseling"},{"issue":"3","key":"key2025042814040624400_ref009","doi-asserted-by":"publisher","first-page":"106","DOI":"10.3844\/jssp.2007.106.116","article-title":"Ten common misunderstandings, misconceptions, persistent myths and urban legends about Likert scales and Likert response formats and their antidotes","volume":"3","year":"2007","journal-title":"Journal of Social Sciences"},{"volume-title":"Influence: The Psychology of Persuasion","year":"2007","key":"key2025042814040624400_ref010"},{"key":"key2025042814040624400_ref011","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1109\/lisat.2016.7494156","article-title":"Penetration testing: concepts, attack methods, and defense strategies","volume-title":"2016 IEEE Long Island Systems, Applications and Technology Conference (LISAT)","year":"2016"},{"article-title":"Decision strategies and susceptibility to phishing","year":"2006","key":"key2025042814040624400_ref012","doi-asserted-by":"publisher","DOI":"10.1145\/1143120.1143131"},{"key":"key2025042814040624400_ref015","doi-asserted-by":"publisher","DOI":"10.1109\/stast.2015.10","article-title":"An analysis of social engineering principles in effective phishing","volume-title":"2015 Workshop on Socio-Technical Aspects in Security and Trust","year":"2015"},{"key":"key2025042814040624400_ref013","first-page":"29","article-title":"Persuasion in scams","year":"2016","journal-title":"Understanding Social Engineering Based Scams"},{"key":"key2025042814040624400_ref014","doi-asserted-by":"crossref","first-page":"19","DOI":"10.1016\/j.ijhcs.2018.12.004","article-title":"Persuasion: how phishing emails can influence users and bypass security measures","volume":"125","year":"2019","journal-title":"International Journal of Human-Computer Studies"},{"key":"key2025042814040624400_ref016","first-page":"36","article-title":"Principles of persuasion in social engineering and their use in phishing","year":"2015","journal-title":"Lecture Notes in Computer Science"},{"issue":"3","key":"key2025042814040624400_ref017","doi-asserted-by":"publisher","first-page":"10","DOI":"10.1016\/s1361-3723(07)70035-0","article-title":"Phishing: can we spot the signs?","volume":"2007","year":"2007","journal-title":"Computer Fraud and Security"},{"volume-title":"A Multi-Level Defense Against Social Engineering","year":"2003","key":"key2025042814040624400_ref018"},{"volume-title":"Social Engineering: The Art of Human Hacking","year":"2011","key":"key2025042814040624400_ref019"},{"issue":"3_suppl","key":"key2025042814040624400_ref020","doi-asserted-by":"publisher","first-page":"1095","DOI":"10.2466\/pr0.1974.34.3c.1095","article-title":"Robustness of the t test: a guide for researchers on effect of violations of assumptions","volume":"34","year":"1974","journal-title":"Psychological Reports"},{"issue":"1","key":"key2025042814040624400_ref021","doi-asserted-by":"publisher","DOI":"10.1186\/s13673-020-00237-7","article-title":"Don\u2019t click: towards an effective anti-phishing training. A comparative literature review","volume":"10","year":"2020","journal-title":"Human-Centric Computing and Information Sciences"},{"key":"key2025042814040624400_ref022","doi-asserted-by":"publisher","DOI":"10.3389\/fpsyg.2013.00863","article-title":"Calculating and reporting effect sizes to facilitate cumulative science: a practical primer for T-tests and ANOVAS","volume":"4","year":"2013","journal-title":"Frontiers in Psychology"},{"issue":"1","key":"key2025042814040624400_ref023","doi-asserted-by":"publisher","first-page":"122","DOI":"10.1177\/2372732214548863","article-title":"Active deception detection","volume":"1","year":"2014","journal-title":"Policy Insights from the Behavioral and Brain Sciences"},{"issue":"4","key":"key2025042814040624400_ref024","doi-asserted-by":"publisher","first-page":"378","DOI":"10.1177\/0261927x14535916","article-title":"Truth-default theory (TDT)","volume":"33","year":"2014","journal-title":"Journal of Language and Social Psychology"},{"issue":"2","key":"key2025042814040624400_ref025","doi-asserted-by":"publisher","first-page":"5","DOI":"10.16935\/ejss.2017.33.2.001","article-title":"Mysteries and myths in human deception and deception detection: insights from truth-default theory","volume":"33","year":"2017","journal-title":"Ewha Journal of Social Sciences"},{"volume-title":"Duped: truth-Default Theory and the Social Science of Lying and Deception","year":"2020","key":"key2025042814040624400_ref026"},{"issue":"3","key":"key2025042814040624400_ref027","doi-asserted-by":"publisher","first-page":"377","DOI":"10.1111\/j.1468-2958.2011.01407.x","article-title":"Sender demeanor: individual differences in sender believability have a powerful impact on deception detection judgments","volume":"37","year":"2011","journal-title":"Human Communication Research"},{"first-page":"1","article-title":"Internet-based social engineering psychology, attacks, and defenses: a survey","year":"2024","key":"key2025042814040624400_ref028"},{"issue":"1","key":"key2025042814040624400_ref029","doi-asserted-by":"publisher","first-page":"17","DOI":"10.1080\/03637759209376246","article-title":"When the alteration of information is viewed as deception: an empirical test of information manipulation theory","volume":"59","year":"1992","journal-title":"Communication Monographs"},{"issue":"2","key":"key2025042814040624400_ref030","doi-asserted-by":"publisher","first-page":"149","DOI":"10.7334\/psicothema2017.34","article-title":"Deception detection: state of the art and future prospects","volume":"29","year":"2017","journal-title":"Psicothema"},{"volume-title":"The Art of Deception: controlling the Human Element of Security","year":"2003","key":"key2025042814040624400_ref031"},{"key":"key2025042814040624400_ref032","doi-asserted-by":"crossref","first-page":"17","DOI":"10.1016\/j.ijhcs.2019.02.007","article-title":"Predicting susceptibility to social influence in phishing emails","volume":"128","year":"2019","journal-title":"International Journal of Human-Computer Studies"},{"issue":"2","key":"key2025042814040624400_ref033","doi-asserted-by":"crossref","first-page":"206","DOI":"10.1108\/ICS-04-2017-0022","article-title":"Social engineering defence mechanisms and counteracting training strategies","volume":"25","year":"2017","journal-title":"Information and Computer Security"},{"issue":"3","key":"key2025042814040624400_ref034","doi-asserted-by":"publisher","first-page":"307","DOI":"10.1080\/03637751.2021.1985153","article-title":"Unpacking variation in lie prevalence: prolific liars, bad lie days, or both?","volume":"89","year":"2021","journal-title":"Communication Monographs"},{"volume-title":"Comptia Security+ Certification Study Guide: Network Security Essentials","year":"2020","key":"key2025042814040624400_ref035"},{"issue":"3","key":"key2025042814040624400_ref036","doi-asserted-by":"publisher","first-page":"70","DOI":"10.1145\/1897852.1897872","article-title":"Understanding scam victims: seven principles for systems security","volume":"54","year":"2011","journal-title":"Communications of the ACM"},{"key":"key2025042814040624400_ref037","doi-asserted-by":"publisher","DOI":"10.1016\/j.chb.2021.106930","article-title":"Performing social engineering: a qualitative study of information security deceptions","volume":"124","year":"2021","journal-title":"Computers in Human Behavior"},{"key":"key2025042814040624400_ref038","doi-asserted-by":"crossref","first-page":"11895","DOI":"10.1109\/ACCESS.2021.3051633","article-title":"Social engineering in cybersecurity: effect mechanisms, human vulnerabilities and attack methods","volume":"9","year":"2021","journal-title":"IEEE Access"},{"issue":"4","key":"key2025042814040624400_ref039","doi-asserted-by":"publisher","DOI":"10.1002\/spy2.161","article-title":"Understanding and deciphering of social engineering attack scenarios","volume":"4","year":"2021","journal-title":"Security and Privacy"},{"issue":"2","key":"key2025042814040624400_ref040","doi-asserted-by":"publisher","first-page":"314","DOI":"10.1108\/ics-07-2020-0113","article-title":"How social engineers use persuasion principles during vishing attacks","volume":"29","year":"2020","journal-title":"Information and Computer Security"},{"key":"key2025042814040624400_ref041","doi-asserted-by":"publisher","first-page":"103084","DOI":"10.1016\/j.apergo.2020.103084","article-title":"Email phishing and signal detection: how persuasion principles and personality influence response patterns and accuracy","volume":"86","year":"2020","journal-title":"Applied Ergonomics"},{"key":"key2025042814040624400_ref042","doi-asserted-by":"publisher","first-page":"101380","DOI":"10.1016\/j.copsyc.2022.101380","article-title":"Truth-Default theory and the psychology of lying and deception detection","volume":"47","year":"2022","journal-title":"Current Opinion in Psychology"},{"issue":"2","key":"key2025042814040624400_ref043","doi-asserted-by":"publisher","first-page":"125","DOI":"10.1080\/03637759909376468","article-title":"Accuracy in detecting truths and lies: documenting the \u2018veracity effect","volume":"66","year":"1999","journal-title":"Communication Monographs"}],"container-title":["Information &amp; Computer Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.emerald.com\/insight\/content\/doi\/10.1108\/ICS-07-2023-0118\/full\/xml","content-type":"application\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/www.emerald.com\/insight\/content\/doi\/10.1108\/ICS-07-2023-0118\/full\/html","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,7,25]],"date-time":"2025-07-25T01:23:06Z","timestamp":1753406586000},"score":1,"resource":{"primary":{"URL":"http:\/\/www.emerald.com\/ics\/article\/33\/2\/267-283\/1263379"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,8,8]]},"references-count":43,"journal-issue":{"issue":"2","published-online":{"date-parts":[[2024,8,8]]},"published-print":{"date-parts":[[2025,4,29]]}},"alternative-id":["10.1108\/ICS-07-2023-0118"],"URL":"https:\/\/doi.org\/10.1108\/ics-07-2023-0118","relation":{},"ISSN":["2056-4961","2056-497X"],"issn-type":[{"type":"print","value":"2056-4961"},{"type":"electronic","value":"2056-497X"}],"subject":[],"published":{"date-parts":[[2024,8,8]]}}}