BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Talks.cam//talks.cam.ac.uk//
X-WR-CALNAME:Talks.cam
BEGIN:VEVENT
SUMMARY:Understanding scam victims: Seven principles for systems security 
 - Frank Stajano\, University of Cambridge
DTSTART:20091117T161500Z
DTEND:20091117T171500Z
UID:TALK21358@talks.cam.ac.uk
CONTACT:Joseph Bonneau
DESCRIPTION:The success of many attacks on computer systems can be traced 
 back to the security engineers not understanding the psychology of the sys
 tem users they meant to protect. We examine a variety of scams and "short 
 cons" that were investigated\, documented and recreated for the BBC TV pro
 gramme "The Real Hustle" and we extract from them some general principles 
 about the recurring behavioural patterns of victims that hustlers have lea
 rnt to exploit.\n\nWe argue that an understanding of these inherent "human
  factors" vulnerabilities\, and the necessity to take them into account du
 ring design rather than naïvely shifting the blame onto the "gullible use
 rs"\, is a fundamental paradigm shift for the security engineer which\, if
  adopted\, will lead to stronger and more resilient systems security.\n\nY
 ou can read the full tech report here:\n\nhttp://www.cl.cam.ac.uk/techrepo
 rts/UCAM-CL-TR-754.pdf
LOCATION:Lecture Theatre 2\, Computer Laboratory\, William Gates Building
END:VEVENT
END:VCALENDAR