The psychology of security

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

The psychology of security

Full text

Digital Edition , Html

Html (29 KB), Pdf

Pdf (5.42 MB)

Source

Communications of the ACM archive
Volume 51 , Issue 4 (April 2008) table of contents
The psychology of security: why do good users make bad decisions?

Pages 34-40

Year of Publication: 2008

ISSN:0001-0782

Author

Ryan West

Dell, Inc., Austin, TX

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 85, Downloads (12 Months): 640, Citation Count: 0

Additional Information:

abstract references index terms collaborative colleagues

Tools and Actions:	Request Permissions Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/1330311.1330320 What is a DOI?

ABSTRACT

Why do good users make bad decisions?

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Anne Adams , Martina Angela Sasse, Users are not the enemy, Communications of the ACM, v.42 n.12, p.40-46, Dec. 1999 [doi>10.1145/322796.322806]
	2	Borgida, E., and Nisbett, R.E. The differential impact of abstract vs. concrete information on decisions. J. Applied Social Psychology 7 (1977) 258--271.
	3	Rachna Dhamija , J. D. Tygar , Marti Hearst, Why phishing works, Proceedings of the SIGCHI conference on Human Factors in computing systems, April 22-27, 2006, Montréal, Québec, Canada [doi>10.1145/1124772.1124861]
	4	Julie S. Downs , Mandy Holbrook , Lorrie Faith Cranor, Behavioral response to phishing risk, Proceedings of the anti-phishing working groups 2nd annual eCrime researchers summit, p.37-44, October 04-05, 2007, Pittsburgh, Pennsylvania [doi>10.1145/1299015.1299019]
	5	Steven J. Greenwald , Kenneth G. Olthoff , Victor Raskin , Willibald Ruch, The user non-acceptance paradigm: INFOSEC's dirty little secret, Proceedings of the 2004 workshop on New security paradigms, September 20-23, 2004, Nova Scotia, Canada [doi>10.1145/1065907.1066032]
	6	Slovic, P., Fischhoff, B., and Lichtenstein, S. Facts versus fears: Understanding perceived risks. Judgment under Uncertainty: Heuristics and Biases. D. Kahneman, P. Slovic, and A. Tversky, eds. Cambridge University Press, New York, 1986, 463-489.
	7	D. K. Smetters , R. E. Grinter, Moving from the design of usable security technologies to the design of useful secure applications, Proceedings of the 2002 workshop on New security paradigms, September 23-26, 2002, Virginia Beach, Virginia [doi>10.1145/844102.844117]
	8	Tversky, A. and Kahneman, D. Rational choice and the framing of decisions. J. Business 59 (1986), 251--278.
	9	Alma Whitten , J. D. Tygar, Why Johnny can't encrypt: a usability evaluation of PGP 5.0, Proceedings of the 8th conference on USENIX Security Symposium, p.14-14, August 23-26, 1999, Washington, D.C.
	10	Wright, P. The harassed decision maker: Timer pressure, distractions, and the use of evidence. J. Applied Psychology 59, (1974), 555--561.
	11	Ka-Ping Yee, User Interaction Design for Secure Systems, Proceedings of the 4th International Conference on Information and Communications Security, p.278-290, December 09-12, 2002
	12	Mary Ellen Zurko , Richard T. Simon, User-centered security, Proceedings of the 1996 workshop on New security paradigms, p.27-33, September 17-20, 1996, Lake Arrowhead, California, United States [doi>10.1145/304851.304859]