Designing a S-UX Framework to Combat Phishing and Foster Digital Responsibility

Noluntu Mpekoa; Sheethal Tom; Nobubele Shozi; Noluxolo Gcaza

doi:10.1007/978-3-032-00777-3_1

Designing a S-UX Framework to Combat Phishing and Foster Digital Responsibility

Noluntu Mpekoa
, Sheethal Tom
, Nobubele Shozi
, Noluxolo Gcaza

Academy of Computer Science and Software Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Cyberattacks have emerged as problems caused not only by technological issues but also by human factors that are often overlooked when designing interactive systems. Social engineering is an extremely effective type of cybercrime, where the attackers use human psychology to achieve their target which are in the form of data, account details, or IT devices for example. Phishing is one of the first methods that social engineers use to target victims and it accounts for the highest percentage of data breaches at 25% compared to the other types. Phishing is a deception technique that attackers use to steal sensitive information such as usernames, passwords, and online banking details from their victims. Despite phishing attacks being known for more than two decades, and the ongoing research for developing effective techniques against these attacks, the increasing trend of attacks confirms the lack of robust solutions and techniques against these attacks. There is a need for comprehensive research in the area of anti-phishing to improve the overall cybersecurity landscape. Hence this study aims to design and propose a User Experience (UX) Framework to safeguard against digital deception, that focuses on cybersecurity training applications. The study conducted an in-depth literature review on phishing and major phishing attacks. Next, the study explored interactive design by linking phishing with user experience design. Lastly, the improved S-UX framework is proposed for cybersecurity training applications in safeguarding users against digital deception. The proposed framework offers six high-level constructs which include security, experience, interactiveness, accessibility, robustness, and transparency. This study also provides recommendations on how to apply the proposed framework for cybersecurity training and real-world situations.

Original language	English
Title of host publication	Designing for Tomorrow
Subtitle of host publication	Innovation and Equity in Global Interaction Design - 1st IFIP WG 13.8 Interaction Design for International Development, IDID 2024, Proceedings
Editors	Ganesh Bhutkar, Sheethal Tom, Debjani Roy, Jose Abdelnour-Nocera
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	1-20
Number of pages	20
ISBN (Print)	9783032007766
DOIs	https://doi.org/10.1007/978-3-032-00777-3_1
Publication status	Published - 2026
Event	1st IFIP WG 13.8 International Conference on Interaction Design for International Development, IDID 2024 - Mumbai, India Duration: 7 Nov 2024 → 9 Nov 2024

Publication series

Name	IFIP Advances in Information and Communication Technology
Volume	747 IFIPAICT
ISSN (Print)	1868-4238
ISSN (Electronic)	1868-422X

Conference

Conference	1st IFIP WG 13.8 International Conference on Interaction Design for International Development, IDID 2024
Country/Territory	India
City	Mumbai
Period	7/11/24 → 9/11/24

Keywords

Phishing
UX framework
cybersecurity training
interactive design

ASJC Scopus subject areas

Information Systems and Management

Access to Document

10.1007/978-3-032-00777-3_1

Cite this

Mpekoa, N., Tom, S., Shozi, N., & Gcaza, N. (2026). Designing a S-UX Framework to Combat Phishing and Foster Digital Responsibility. In G. Bhutkar, S. Tom, D. Roy, & J. Abdelnour-Nocera (Eds.), Designing for Tomorrow: Innovation and Equity in Global Interaction Design - 1st IFIP WG 13.8 Interaction Design for International Development, IDID 2024, Proceedings (pp. 1-20). (IFIP Advances in Information and Communication Technology; Vol. 747 IFIPAICT). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-032-00777-3_1

Mpekoa, Noluntu ; Tom, Sheethal ; Shozi, Nobubele et al. / Designing a S-UX Framework to Combat Phishing and Foster Digital Responsibility. Designing for Tomorrow: Innovation and Equity in Global Interaction Design - 1st IFIP WG 13.8 Interaction Design for International Development, IDID 2024, Proceedings. editor / Ganesh Bhutkar ; Sheethal Tom ; Debjani Roy ; Jose Abdelnour-Nocera. Springer Science and Business Media Deutschland GmbH, 2026. pp. 1-20 (IFIP Advances in Information and Communication Technology).

@inproceedings{a0d43218e63d44e68251d3b9bb61aa38,

title = "Designing a S-UX Framework to Combat Phishing and Foster Digital Responsibility",

abstract = "Cyberattacks have emerged as problems caused not only by technological issues but also by human factors that are often overlooked when designing interactive systems. Social engineering is an extremely effective type of cybercrime, where the attackers use human psychology to achieve their target which are in the form of data, account details, or IT devices for example. Phishing is one of the first methods that social engineers use to target victims and it accounts for the highest percentage of data breaches at 25\% compared to the other types. Phishing is a deception technique that attackers use to steal sensitive information such as usernames, passwords, and online banking details from their victims. Despite phishing attacks being known for more than two decades, and the ongoing research for developing effective techniques against these attacks, the increasing trend of attacks confirms the lack of robust solutions and techniques against these attacks. There is a need for comprehensive research in the area of anti-phishing to improve the overall cybersecurity landscape. Hence this study aims to design and propose a User Experience (UX) Framework to safeguard against digital deception, that focuses on cybersecurity training applications. The study conducted an in-depth literature review on phishing and major phishing attacks. Next, the study explored interactive design by linking phishing with user experience design. Lastly, the improved S-UX framework is proposed for cybersecurity training applications in safeguarding users against digital deception. The proposed framework offers six high-level constructs which include security, experience, interactiveness, accessibility, robustness, and transparency. This study also provides recommendations on how to apply the proposed framework for cybersecurity training and real-world situations.",

keywords = "Phishing, UX framework, cybersecurity training, interactive design",

author = "Noluntu Mpekoa and Sheethal Tom and Nobubele Shozi and Noluxolo Gcaza",

note = "Publisher Copyright: {\textcopyright} IFIP International Federation for Information Processing 2026.; 1st IFIP WG 13.8 International Conference on Interaction Design for International Development, IDID 2024 ; Conference date: 07-11-2024 Through 09-11-2024",

year = "2026",

doi = "10.1007/978-3-032-00777-3\_1",

language = "English",

isbn = "9783032007766",

series = "IFIP Advances in Information and Communication Technology",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "1--20",

editor = "Ganesh Bhutkar and Sheethal Tom and Debjani Roy and Jose Abdelnour-Nocera",

booktitle = "Designing for Tomorrow",

address = "Germany",

}

Mpekoa, N, Tom, S, Shozi, N & Gcaza, N 2026, Designing a S-UX Framework to Combat Phishing and Foster Digital Responsibility. in G Bhutkar, S Tom, D Roy & J Abdelnour-Nocera (eds), Designing for Tomorrow: Innovation and Equity in Global Interaction Design - 1st IFIP WG 13.8 Interaction Design for International Development, IDID 2024, Proceedings. IFIP Advances in Information and Communication Technology, vol. 747 IFIPAICT, Springer Science and Business Media Deutschland GmbH, pp. 1-20, 1st IFIP WG 13.8 International Conference on Interaction Design for International Development, IDID 2024, Mumbai, India, 7/11/24. https://doi.org/10.1007/978-3-032-00777-3_1

Designing a S-UX Framework to Combat Phishing and Foster Digital Responsibility. / Mpekoa, Noluntu; Tom, Sheethal; Shozi, Nobubele et al.
Designing for Tomorrow: Innovation and Equity in Global Interaction Design - 1st IFIP WG 13.8 Interaction Design for International Development, IDID 2024, Proceedings. ed. / Ganesh Bhutkar; Sheethal Tom; Debjani Roy; Jose Abdelnour-Nocera. Springer Science and Business Media Deutschland GmbH, 2026. p. 1-20 (IFIP Advances in Information and Communication Technology; Vol. 747 IFIPAICT).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Designing a S-UX Framework to Combat Phishing and Foster Digital Responsibility

AU - Mpekoa, Noluntu

AU - Tom, Sheethal

AU - Shozi, Nobubele

AU - Gcaza, Noluxolo

N1 - Publisher Copyright: © IFIP International Federation for Information Processing 2026.

PY - 2026

Y1 - 2026

N2 - Cyberattacks have emerged as problems caused not only by technological issues but also by human factors that are often overlooked when designing interactive systems. Social engineering is an extremely effective type of cybercrime, where the attackers use human psychology to achieve their target which are in the form of data, account details, or IT devices for example. Phishing is one of the first methods that social engineers use to target victims and it accounts for the highest percentage of data breaches at 25% compared to the other types. Phishing is a deception technique that attackers use to steal sensitive information such as usernames, passwords, and online banking details from their victims. Despite phishing attacks being known for more than two decades, and the ongoing research for developing effective techniques against these attacks, the increasing trend of attacks confirms the lack of robust solutions and techniques against these attacks. There is a need for comprehensive research in the area of anti-phishing to improve the overall cybersecurity landscape. Hence this study aims to design and propose a User Experience (UX) Framework to safeguard against digital deception, that focuses on cybersecurity training applications. The study conducted an in-depth literature review on phishing and major phishing attacks. Next, the study explored interactive design by linking phishing with user experience design. Lastly, the improved S-UX framework is proposed for cybersecurity training applications in safeguarding users against digital deception. The proposed framework offers six high-level constructs which include security, experience, interactiveness, accessibility, robustness, and transparency. This study also provides recommendations on how to apply the proposed framework for cybersecurity training and real-world situations.

AB - Cyberattacks have emerged as problems caused not only by technological issues but also by human factors that are often overlooked when designing interactive systems. Social engineering is an extremely effective type of cybercrime, where the attackers use human psychology to achieve their target which are in the form of data, account details, or IT devices for example. Phishing is one of the first methods that social engineers use to target victims and it accounts for the highest percentage of data breaches at 25% compared to the other types. Phishing is a deception technique that attackers use to steal sensitive information such as usernames, passwords, and online banking details from their victims. Despite phishing attacks being known for more than two decades, and the ongoing research for developing effective techniques against these attacks, the increasing trend of attacks confirms the lack of robust solutions and techniques against these attacks. There is a need for comprehensive research in the area of anti-phishing to improve the overall cybersecurity landscape. Hence this study aims to design and propose a User Experience (UX) Framework to safeguard against digital deception, that focuses on cybersecurity training applications. The study conducted an in-depth literature review on phishing and major phishing attacks. Next, the study explored interactive design by linking phishing with user experience design. Lastly, the improved S-UX framework is proposed for cybersecurity training applications in safeguarding users against digital deception. The proposed framework offers six high-level constructs which include security, experience, interactiveness, accessibility, robustness, and transparency. This study also provides recommendations on how to apply the proposed framework for cybersecurity training and real-world situations.

KW - Phishing

KW - UX framework

KW - cybersecurity training

KW - interactive design

UR - https://www.scopus.com/pages/publications/105012356966

U2 - 10.1007/978-3-032-00777-3_1

DO - 10.1007/978-3-032-00777-3_1

M3 - Conference contribution

AN - SCOPUS:105012356966

SN - 9783032007766

T3 - IFIP Advances in Information and Communication Technology

SP - 1

EP - 20

BT - Designing for Tomorrow

A2 - Bhutkar, Ganesh

A2 - Tom, Sheethal

A2 - Roy, Debjani

A2 - Abdelnour-Nocera, Jose

PB - Springer Science and Business Media Deutschland GmbH

T2 - 1st IFIP WG 13.8 International Conference on Interaction Design for International Development, IDID 2024

Y2 - 7 November 2024 through 9 November 2024

ER -

Mpekoa N, Tom S, Shozi N, Gcaza N. Designing a S-UX Framework to Combat Phishing and Foster Digital Responsibility. In Bhutkar G, Tom S, Roy D, Abdelnour-Nocera J, editors, Designing for Tomorrow: Innovation and Equity in Global Interaction Design - 1st IFIP WG 13.8 Interaction Design for International Development, IDID 2024, Proceedings. Springer Science and Business Media Deutschland GmbH. 2026. p. 1-20. (IFIP Advances in Information and Communication Technology). doi: 10.1007/978-3-032-00777-3_1

Designing a S-UX Framework to Combat Phishing and Foster Digital Responsibility

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this