ABSTRACT
Security is one of the biggest challenges facing our globally connected world. A secure system requires technology and people to work together to form a holistic system. The strengths of one can compensate for the weaknesses of the other. However people are often viewed as an annoyance rather than the reason for building the system in the first place [60] (Smetters 2007). Understanding human behavior is important to designing security. We need to understand what users are good at and bad at, what motivates them, what they pay attention to and what they ignore, what deception they are prone to, how they assess security risks and threats, their attitude towards behaving securely, and sometimes we need to work out how to modify behavior in order to mitigate risk.
