Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

The efficacy potential of cyber security advice as presented in news articles

Mark Quinlan, Aaron Ceross, Andrew Simpson

TL;DR

A corpus of cyber security advice generated from mainstream news articles is presented, showing an increase in the generation of cyber security news articles, together with increases in vocabulary complexity and reading difficulty.

Abstract

Cyber security advice is a broad church: it is thematically expansive, comprising expert texts, user-generated data consumed by individual users via informal learning, and much in-between. While there is evidence that cyber security news articles play a role in disseminating cyber security advice, the nature and extent of that role are not clear. We present a corpus of cyber security advice generated from mainstream news articles. The work was driven by two research objectives. The first objective was to ascertain what kind of actionable advice is being disseminated; the second was to explore ways of determining the efficacy potential of news-mediated security advice. The results show an increase in the generation of cyber security news articles, together with increases in vocabulary complexity and reading difficulty. We argue that these could present challenges for vulnerable users. We believe that this corpus and the accompanying analysis have the potential to inform future efforts to quantify and improve the efficacy potential of security advice dissemination.

The efficacy potential of cyber security advice as presented in news articles

TL;DR

A corpus of cyber security advice generated from mainstream news articles is presented, showing an increase in the generation of cyber security news articles, together with increases in vocabulary complexity and reading difficulty.

Abstract

Cyber security advice is a broad church: it is thematically expansive, comprising expert texts, user-generated data consumed by individual users via informal learning, and much in-between. While there is evidence that cyber security news articles play a role in disseminating cyber security advice, the nature and extent of that role are not clear. We present a corpus of cyber security advice generated from mainstream news articles. The work was driven by two research objectives. The first objective was to ascertain what kind of actionable advice is being disseminated; the second was to explore ways of determining the efficacy potential of news-mediated security advice. The results show an increase in the generation of cyber security news articles, together with increases in vocabulary complexity and reading difficulty. We argue that these could present challenges for vulnerable users. We believe that this corpus and the accompanying analysis have the potential to inform future efforts to quantify and improve the efficacy potential of security advice dissemination.
Paper Structure (29 sections, 3 equations, 9 figures, 6 tables)

This paper contains 29 sections, 3 equations, 9 figures, 6 tables.

Table of Contents

  1. Introduction
  2. Background and motivation
  3. What is security advice?
  4. The expert
  5. Who are the consumers of security advice?
  6. How do individuals consume security advice?
  7. The efficacy potential of advice
  8. The role of the media in security advice consumption
  9. Methodology
  10. The news-scraper
  11. The search terms
  12. Cleaning the data
  13. Classifying the data
  14. Additional work to encompass null values from CIS-vectors
  15. Results
  16. ...and 14 more sections

Figures (9)

  • Figure 1: An overview of the news-scraper tool.
  • Figure 2: An overview of the CIS-vectors ontological framework.
  • Figure 3: Articles published per day between January 2015 and December 2020.
  • Figure 4: The occurrence rate of CIS-vectors. Null values are excluded.
  • Figure 5: A correlation plot, highlighting in particular the strong correlation between CIS-4 and CIS-16.
  • ...and 4 more figures