Designing a Mobile Game for Home Computer Users to Protect Against Phishing Attacks

TL;DR

This paper presents the design of a mobile game aimed at educating home computer users to recognize and avoid phishing attacks, using a theoretical model and game design principles to promote protective behavior.

Contribution

It introduces a novel mobile game design based on TTAT to enhance phishing threat avoidance among home users, with a prototype developed on Google App Inventor.

Findings

Prototype demonstrates potential for phishing education

Game design increases user motivation to avoid phishing

Theoretical model guides effective game structure

Abstract

This research aims to design an educational mobile game for home computer users to prevent from phishing attacks. Phishing is an online identity theft which aims to steal sensitive information such as username, password and online banking details from victims. To prevent this, phishing education needs to be considered. Mobile games could facilitate to embed learning in a natural environment. The paper introduces a mobile game design based on a story which is simplifying and exaggerating real life. We use a theoretical model derived from Technology Threat Avoidance Theory (TTAT) to address the game design issues and game design principles were used as a set of guidelines for structuring and presenting information. The overall mobile game design was aimed to enhance avoidance behaviour through motivation of home computer users to protect against phishing threats. The prototype game design is presented on Google App Inventor Emulator. We believe by training home computer users to protect against phishing attacks, would be an aid to enable the cyberspace as a secure environment.