IT Security is often considered to be a technical problem. However, IT Security is about decisions made by humans and should therefore be researched with psychological methods. Technical/Engineering methods are not able to solve security problems. In this talk I will introduce the Institute’s research programme about the Psychology of Security. We are going to research the psychological basics of IT security, including:

- How do people experience IT security? 
- How are they motivated? 
- How do they learn? 
- Why do people tend to make the same mistakes again and again (Buffer Overflow, anyone?)? 
- What can we do to prevent security incidents?
- Which curricula should be taught about IT security?

ZG

Publikationen