Phishing Awareness via Game-Based Learning (CSEE&T 2025 - IEEE Conference on Software Engineering Education and Training (CSEE&T))

Who

Argianto Rahartomo, Ahmed Tareq Ali Ghaleb, Mohammad Ghafari

Track

CSEE&T 2025 Software Engineering Education

Time Zone

The program is currently displayed in (GMT-04:00) Eastern Time (US & Canada).

Use conference time zone: (GMT-04:00) Eastern Time (US & Canada)Select other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

By setting a time band, the program will dim events that are outside this time window. This is useful for (virtual) conferences with a continuous program (with repeated sessions).
The time band will also limit the events that are included in the personal iCalendar subscription service.

Display full programSpecify a time band

Save

When

Tue 29 Apr 2025 14:20 - 14:40 at 106 - Security and Privacy Chair(s): Marian Daun

Abstract

The increased use of digital devices and applications has led to a rise in phishing attacks. We develop a serious game to raise awareness about phishing attacks and help people avoid these threats in a risk-free learning environment. This game targets three types of phishing—clone phishing, SMS phishing, and spear phishing—and uses a Large Language Model to dynamically generate dialogues and questions. It also incorporates state randomization and time-limited challenges to enhance the gameplay. We evaluated two groups of participants and found that those who played the game showed, on average, a 24% increase in awareness and a 30% boost in confidence.

Link to Preprint

https://arxiv.org/pdf/2501.12077

Argianto Rahartomo

TU Clausthal

Germany

Ahmed Tareq Ali Ghaleb

Technische Universität Clausthal

Mohammad Ghafari