Abstract
Phishing emails represent a major threat to online information security. While the prevailing research is focused on users’ susceptibility, few studies have considered the decision making strategies that account for skilled detection. One relevant facet of decision making is cue utilization, where users retrieve feature-event associations stored in long-term memory. High degrees of cue utilization help reduce the demands placed on working memory (i.e., cognitive load), and invariably improve decision performance (i.e., the information-reduction hypothesis in expert performance). The current study explored the effect of cue utilization and cognitive load when detecting phishing emails. A total of 50 undergraduate students completed: (1) a rail control task and; (2) a phishing detection task. A cue utilization assessment battery (EXPERTise 2.0) then classified participants with either higher or lower cue utilization. As expected, higher cue utilization was associated with a greater likelihood of detecting phishing emails. However, variation in cognitive load had no effect on phishing detection, nor was there an interaction between cue utilization and cognitive load. These findings have implications for our understanding of cognitive mechanisms that underpin the detection of phishing emails and the role of factors beyond the information-reduction hypothesis.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
References
Brouwers, S., Wiggins, M.W., Griffin, B., Helton, W.S., O’Hare, D.: The role of cue utilisation in reducing the workload in a train control task. Ergonomics 60(11), 1500–1515 (2017)
Ericsson, K.A., Lehmann, A.C.: Expert and exceptional performance: evidence of maximal adaptation to task constraints. Annu. Rev. Psychol. 47(1), 273–305 (1996). https://doi.org/10.1146/annurev.psych.47.1.273
Falleti, M.G., Maruff, P., Collie, A., Darby, D.G.: Practice effects associated with the repeated assessment of cognitive function using the CogState battery at 10-minute, one week and one month test-retest intervals. J. Clin. Exp. Neuropsychol. 28(7), 1095–1112 (2006). https://doi.org/10.1080/13803390500205718
Haider, H., Frensch, P.A.: Information reduction during skill acquisition: the influence of task instruction. J. Exp. Psychol.: Appl. 5(2), 129–151 (1999). https://doi.org/10.1037/1076-898X.5.2.129
Jackson, S.A., Kleitman, S., Aidman, E.: Low cognitive load and reduced arousal impede practice effects on executive functioning, metacognitive confidence and decision making. Public Libr. Sci. One 9(12), e115689–e115689 (2014). https://doi.org/10.1371/journal.pone.0115689
Johnston, D., Morrison, B.W.: The application of naturalistic decision-making techniques to explore cue use in rugby league playmakers. J. Cogn. Eng. Decision Making 10(4), 391–410 (2016). https://doi.org/10.1177/1555343416662181
Klein, G.: A Recognition-Primed Decision (RPD) Model of Rapid Decision Making Decision Making in Action: Models and Methods, pp. 138–147. Ablex, Westport (1993)
Levine, T.R.: Truth-default theory: a theory of human deception and deception detection. J. Lang. Soc. Psychol. 33(4), 378–392 (2014). https://doi.org/10.1177/0261927X14535916
Loveday, T., Wiggins, M.W., Harris, J.M., O’Hare, D., Smith, N.: An objective approach to identifying diagnostic expertise among power system controllers. Hum. Factors: J. Hum. Factors Ergon. Soc. 55(1), 90–107 (2013a). https://doi.org/10.1177/0018720812450911
Loveday, T., Wiggins, M.W., Searle, B.: Cue utilization and broad indicators of workplace expertise. J. Cognitive Eng. Decis. Making 8(1), 98–113 (2014). https://doi.org/10.1177/1555343413497019
Loveday, T., Wiggins, M.W., Searle, B.J., Festa, M., Schell, D.: The capability of static and dynamic features to distinguish competent from genuinely expert practitioners in pediatric diagnosis. Hum. Factors 55(1), 125–137 (2013b). https://doi.org/10.1177/0018720812448475
Morrison, B.W., Morrison, N.M.V.: Diagnostic cues in major crime investigation. In: Wiggins, M.W., Loveday, T. (eds.) Diagnostic Expertise in Organizational Environments, pp. 91–98. Ashgate Publishing, Surrey (2015)
Morrison, B.W., Morrison, N.M.V., Morton, J., Harris, J.: Using critical-cue inventories to advance virtual patient technologies in psychological assessment. In: Shen, H., Smith, R., Paay, J., Calder, P., Wyeld, T. (eds.) Proceedings of the 25th Australian Computer-Human Interaction Conference: Augmentation, Application, Innovation, Collaboration (OzCHI 2013), pp. 531–534. ACM, New York (2013). http://dx.doi.org/10.1145/2541016.2541085
Morrison, B.W., Wiggins, M.W., Bond, N.W., Tyler, M.D.: Measuring relative cue strength as a means of validating an inventory of expert offender profiling cues. J. Cogn. Eng. Decis. Making 7(2), 211–226 (2013). https://doi.org/10.1177/1555343412459192
Morrison, B.W., Wiggins, M.W., Morrison, N.: Utility of expert cue exposure as a mechanism to improve decision-making performance among novice criminal investigators. J. Cogn. Eng. Decis. Making 12(2), 99–111 (2018). https://doi.org/10.1177/1555343417746570
Symantec. Internet Security Threat Report (2018). https://www.symantec.com/content/dam/symantec/docs/reports/istr-23-2018-en.pdf
Vergelis, M., Shcherbakova, T., Sidorina, T.: Spam and phishing in 2018 (2019). https://securelisst.com/spam-and-phishing-in-2018/89701/
Watkinson, J., Bristow, G., Auton, J., McMahon, C.M., Wiggins, M.W.: Postgraduate training in audiology improves clinicians’ audiology-related cue utilisation. Int. J. Audiol. 57(9), 681–687 (2018)
Wiggins, M.: The role of cue utilisation and adaptive interface design in the management of skilled performance in operations control. Theor. Issues Ergon. Sci. 15(3), 282–292 (2014). https://doi.org/10.1080/1463922X.2012.724725
Wiggins, M.W.: Cues in diagnostic reasoning. In: Wiggins, M.W., Loveday, T. (eds.) Diagnostic Expertise in Organizational Environments, pp. 1–11. Ashgate Publishing, Surrey (2015)
Wiggins, M.W., Griffin, B., Brouwers, S.: The potential role of context-related exposure in explaining differences in water safety cue utilization. Hum. Factors 61(5), 825–838 (2019). https://doi.org/10.1177/0018720818814299
Wiggins, M.W., Loveday, T., Auton, J.: EXPERT Intensive Skills Evaluation (EXPERTise 2.0) Test. Macquarie University, Sydney, Australia (2015)
Wiggins, M., O’Hare, D.: Applications of micro-simulation in cognitive skills development. In: Karwowski, W. (ed.) International Encyclopedia of Ergonomics and Human Factors, 2nd edn, pp. 3262–3267. Taylor & Francis, United Kingdom (2006)
Williams, E.J., Hinds, J., Joinson, A.N.: Exploring susceptibility to phishing in the workplace. Int. J. Hum.-Comput. Stud. 120, 1–13 (2018). https://doi.org/10.1016/j.ijhcs.2018.06.004
Yee, D.J., Wiggins, M.W., Auton, J.C., Warry, G., Cklamovski, P.: Technical and social cue utilization in expert football coaches, Sport Exerc. Perform. Psychol. (2019). https://doi.org/10.1037/spy0000170
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2020 Springer Nature Switzerland AG
About this paper
Cite this paper
Nasser, G., Morrison, B.W., Bayl-Smith, P., Taib, R., Gayed, M., Wiggins, M.W. (2020). The Effects of Cue Utilization and Cognitive Load in the Detection of Phishing Emails. In: Bernhard, M., et al. Financial Cryptography and Data Security. FC 2020. Lecture Notes in Computer Science(), vol 12063. Springer, Cham. https://doi.org/10.1007/978-3-030-54455-3_4
Download citation
DOI: https://doi.org/10.1007/978-3-030-54455-3_4
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-54454-6
Online ISBN: 978-3-030-54455-3
eBook Packages: Computer ScienceComputer Science (R0)