Aug 29, 2009 | Research library
Conventional wisdom is that phishing represents easy money. In this paper we examine the economics that underlie the phenomenon, and find a very different picture. Phishing is a classic example of tragedy of the commons, where there is open access to a resource that...
Aug 13, 2009 | Research library
Research focusing on educating users about phishing and identifying phishing emails, as opposed to using technology for prevention and detection. The research identified multiple problems, namely: that people were not motivated to learn about security; that security...
Aug 10, 2009 | Research library
This paper develops and tests a theoretical model of the incentive effects of penalties, pressures and perceived effectiveness of employee actions.
Aug 10, 2009 | Research library
This study examines the extent to which individuals seek confirming – or disconfirming – evidence, instead of actually testing a hypothesis. Results indicated that, often, individuals are unwilling (or unable) to test their hypotheses. ...
Aug 1, 2009 | Research library
The success of many attacks on computer systems can be traced back to the security engineers not understanding the psychology of the system users they meant to protect. We examine a variety of scams and “short cons” that were investigated, documented and recreated for...
Jul 15, 2009 | Research library
The Windows Vista personal firewall provides users with a simple interface, obscuring many operational details. However, this concealment of the network context’s impact on the firewall’s security state may lead users to form an inaccurate mental model of...
