Aims
The Human Aspects of Information Security and Assurance Working Group seeks to promote all aspects of research that can better support and inform our use of security within information systems.
Scope
The scope of the WG11.12 includes any aspects that pertain to the attitudes, perceptions and behaviour of people, and how human characteristics or technologies may be positively modified to improve the ease of use and level of protection provided. Indicative themes within this remit will include:
- Information security culture
- Awareness and education methods
- Enhancing risk perception
- Public understanding of security
- Usable security
- Psychological models of security software usage
- User acceptance of security policies and technologies
- User-friendly authentication methods
- Automating security functionality
- Non-intrusive security
- Assisting security administration
- Impacts of standards, policies, compliance requirements
- Organizational governance for information assurance
- Simplifying risk and threat assessment
- Understanding motivations for misuse
- Social engineering and other human-related risks
- Privacy attitudes and practices
- Computer ethics and security