Low motivation is the first barrier when educating end-users about anti-phishing. Game-based learning utilizing interactive activities and interesting multimedia is a suitable solution for motivating end-users. To satisfy pedagogical needs, it is important to generate numerous game contents full of variety. However, it is costly and time consuming to generate new phishing page. Due to the complexity of combining different phishing attack technique with various deceiving scenario, the phishing pages modeling issue arises when automatically generate content of anti-phishing education game. In this paper, we propose the phishing attack frame hierarchy to describe stereotype features of phishing attack techniques. The inheritance and instantiation properties of the frame model allow us extend the original phishing pages to increase game contents. To evaluate the effectiveness of proposed frame hierarchy, we have developed an anti-phishing education game. The evaluation results show that most of lecturers and experts satisfy with our proposed system.
the 15th Global Chinese Conference on Computers in Education (GCCCE 2011)