Usable privacy and security researchers have developed a variety of approaches to
represent risk to research participants. To understand how these approaches are used and …

The science of judgment and decision making involves three interrelated forms of research:
analysis of the decisions people face, description of their natural responses, and …

Security awareness and education programmes are rolled out in more and more
organisations. However, their effectiveness over time and, correspondingly, appropriate …

Many computer-security defenses are reactive---they operate only when security incidents
take place, or immediately thereafter. Recent efforts have attempted to predict security …

Two popular approaches for hel** consumers avoid phishing threats are phishing
awareness videos and tools supporting users in identifying phishing emails. Awareness …

Phishing email is one of the biggest risks to online information security due to its ability to
exploit human trust and naivety. Prior research has examined whether some people are …

The use of QR codes for malicious purposes was rather limited in the pre-COVID-19 world.
That changed overnight, as the QR codes became a convenient go-between for sharing …

Previous research has suggested that people use the private browsing mode of their web
browsers to conduct privacy-sensitive activities online, but have misconceptions about how it …

In human factor fields such as human-computer interaction (HCI) and psychology,
researchers have been concerned that participants mostly come from WEIRD (Western …

In order to keep one's computing systems and data secure, it is critical to be aware of how to
effectively maintain security and privacy online. Prior experimental work has shown that …