Applying Psychology And Economics To Computer Security
Improving computer security by applying ideas from psychology and economics is the subject of a public talk at De Montfort University Leicester (DMU) next week.
On Monday (20 April) Professor Ross Anderson, a leading expert in the field of information security from the University of Cambridge, will give the 2009 Annual Distinguished Seminar, which is organised by DMU's Software Technology Research Laboratory (STRL).
Entitled 'Information Security - Where Computer Science, Economics and Psychology Meet', the talk will look at whether psychology and economics could be useful tools in developing a framework for analysing security issues.
Professor Anderson said: "For years, people thought that the insecurity of the internet was due to a shortage of features.
"We began to realise that failures - of both security and dependability - are intricately tied up with incentives. Systems often fail because the people who guard and maintain them don't bear the full costs of failure.
"This led to the emergence of a new field of study, information security economics. It provides valuable insights not just into 'security' topics such as privacy, bugs, spam and phishing, but into more general areas such as system dependability and policy."
He added: "An exciting recent development is the interaction with psychology. As systems get harder to attack, the bad guys attack the users instead; phishing only got properly going in 2004, but by 2006 cost British banks £35m.
"We now know that most information security mechanisms are too hard to use, being designed by geeks for geeks.
"We urgently need to introduce bright ideas from psychology and human-computer interface design."
Professor Anderson is Professor of Security Engineering at the University of Cambridge's Computer Laboratory and has carried out pioneering work on peer-to-peer systems, steganography, hardware tamper-resistance, API security and security usability.
The talk takes place at 2pm in lecture theatre 2.13 in DMU's Clephan Building.
For further information about the lecture please contact Lindsey Trent or Lynn Ryan on (0116) 257 7579.
Previous speakers in the STRL's Annual Distinguished Seminar include leading computer experts Professor Amir Pnueli, from New York University, and Professor Morris Sloman, of Imperial College London.
ENDS
On Monday (20 April) Professor Ross Anderson, a leading expert in the field of information security from the University of Cambridge, will give the 2009 Annual Distinguished Seminar, which is organised by DMU's Software Technology Research Laboratory (STRL).
Entitled 'Information Security - Where Computer Science, Economics and Psychology Meet', the talk will look at whether psychology and economics could be useful tools in developing a framework for analysing security issues.
Professor Anderson said: "For years, people thought that the insecurity of the internet was due to a shortage of features.
"We began to realise that failures - of both security and dependability - are intricately tied up with incentives. Systems often fail because the people who guard and maintain them don't bear the full costs of failure.
"This led to the emergence of a new field of study, information security economics. It provides valuable insights not just into 'security' topics such as privacy, bugs, spam and phishing, but into more general areas such as system dependability and policy."
He added: "An exciting recent development is the interaction with psychology. As systems get harder to attack, the bad guys attack the users instead; phishing only got properly going in 2004, but by 2006 cost British banks £35m.
"We now know that most information security mechanisms are too hard to use, being designed by geeks for geeks.
"We urgently need to introduce bright ideas from psychology and human-computer interface design."
Professor Anderson is Professor of Security Engineering at the University of Cambridge's Computer Laboratory and has carried out pioneering work on peer-to-peer systems, steganography, hardware tamper-resistance, API security and security usability.
The talk takes place at 2pm in lecture theatre 2.13 in DMU's Clephan Building.
For further information about the lecture please contact Lindsey Trent or Lynn Ryan on (0116) 257 7579.
Previous speakers in the STRL's Annual Distinguished Seminar include leading computer experts Professor Amir Pnueli, from New York University, and Professor Morris Sloman, of Imperial College London.
ENDS
Your Opinions and Comments
Be the first to post a comment!