This article is devoted to the problem of applying the Bayesian trust network for enterprise risk
assessment. Among the risks that the company is exposed to, we consider operational and strategic risks that may be
associated with the implementation of social engineering attacks by attackers on employees of the enterprise. The article
deals with the problem of identifying user vulnerabilities to social engineering attacks by applying Bayesian belief
networks to the analysis of profile data in a social network for subsequent risk assessment of the enterprise. Based on the
user's profile data, we can potentially determ ine their personal characteristics and, consequently, the ways of social impact
on them. The paper highlights the profile attributes extracted from the social network profile that can be used to build a
Bayesian belief network.
Translated title of the contributionAPPLICATION OF BAYESIAN NETWORKS IN ENTERPRISE RISK ASSESSMENT BASED ON THE ANALYSIS OF EMPLOYEE PROFILES IN SOCIAL NETWORKS
Original languageRussian
Title of host publicationРегиональная информатика и информационная безопасность.
Subtitle of host publicationСборник трудов. Выпуск 9
Place of PublicationСПб.
PublisherСанкт-Петербургское Общество информатики, вычислительной техники, систем связи и управления
Pages218-220
ISBN (Electronic)978-5-907223-89-9
StatePublished - 28 Oct 2020

    Research areas

  • economic risks, operational risks, strategic risks, Bayesian networks, social engineering, social networks

ID: 85314971