|COOKIES: By using this website you agree that we can place Google Analytics Cookies on your device for performance monitoring.|
Understanding scam victims: Seven principles for systems security
If you have a question about this talk, please contact Joseph Bonneau.
The success of many attacks on computer systems can be traced back to the security engineers not understanding the psychology of the system users they meant to protect. We examine a variety of scams and “short cons” that were investigated, documented and recreated for the BBC TV programme “The Real Hustle” and we extract from them some general principles about the recurring behavioural patterns of victims that hustlers have learnt to exploit.
We argue that an understanding of these inherent “human factors” vulnerabilities, and the necessity to take them into account during design rather than naïvely shifting the blame onto the “gullible users”, is a fundamental paradigm shift for the security engineer which, if adopted, will lead to stronger and more resilient systems security.
You can read the full tech report here:
This talk is part of the Computer Laboratory Security Seminar series.
This talk is included in these lists:
Note that ex-directory lists are not shown.
Other listsCUAAS (Cambridge University Atheist and Agnostic) Centre for European Legal Studies List Coffee with Scientists
Other talks日本語母国語話者による英語発音の通じやすさと印象 Accelerating Development in Biomedical Engineering Was the Cat in the Hat Black?: The Hidden Racism of Children’s Literature, and the Need for Diverse Books Autumn Cactus & Succulent Show Geometric models for twisted K-homology Influence and the role of the expert