Understanding Users' (In)Secure Behaviour

Sonia ChiassonSonia Chiasson

Carleton University, Ottawa, Canada

Wednesday, May 20, 2015
2:00 p.m., ICSI Lecture Hall

Why do users behave insecurely even though most will readily state that security and privacy are important to them? This talk will cover some of our most recent research exploring reasons why users' actions do not necessarily reflect their desire for security.  I will discuss our work  using eye-tracking to determine how users make phishing determinations,  user characteristics and personality traits leading to insecure behaviour, and how we can persuade users to behave more securely through improving their mental models.


Sonia Chiasson is the Canada Research Chair in Human Oriented Computer Security and a faculty member in the School of Computer Science at Carleton University in Ottawa, Canada. She is Deputy Scientic Director of SERENE, a Canadian Networks of Centers of Excellence for Knowledge Mobilization created to help protect Canadian individuals and organizations from online security and privacy threats. Her main research interests are in usable security and privacy: the intersection between human-computer interaction (HCI) and computer security and privacy. She leads Carleton's Human Oriented Research in Usable Security (CHORUS) research group.