Usable security, social & behavioural factors impacting security, security culture and awareness as well as the impact of security controls on user behaviours.
Read the CyBOK Human Factors Knowledge Area introduction
The Cyber Security Body Of Knowledge is a comprehensive Body of Knowledge to inform and underpin education and professional training for the cyber security sector. The CyBOK project aims to bring cyber security into line with the more established sciences by distilling knowledge from major internationally-recognised experts to form a Cyber Security Body of Knowledge that will provide much-needed foundations for this emerging topic. The project, funded by the National Cyber Security Programme, is led by the University of Bristol's Professor Awais Rashid, along with other leading cyber security experts - including Professor Andrew Martin, Professor Steve Schneider, Dr Yulia Cherdantseva, Dr Rod Chapman and Dr Marina Krotofil.
Read the Engagement Process booklet in the Practising Creative Securities series
Practising Creative Securities is a series of books which outline engagement practices and methods that can be used to structure conversations about digital security in day-to-day situations. These engagement practices and methods have been developed from eight years of research spanning four research projects that have focused on encouraging communities to talk about what digital security means to them in their day-to-day lives.
Read the Everyday Security booklet in the Practising Creative Securities series
Practising Creative Securities is a series of books which outline engagement practices and methods that can be used to structure conversations about digital security in day-to-day situations. These engagement practices and methods have been developed from eight years of research spanning four research projects that have focused on encouraging communities to talk about what digital security means to them in their day-to-day lives.
Read the Introduction booklet in the Practising Creative Securities series
Practising Creative Securities is a series of books which outline engagement practices and methods that can be used to structure conversations about digital security in day-to-day situations. These engagement practices and methods have been developed from eight years of research spanning four research projects that have focused on encouraging communities to talk about what digital security means to them in their day-to-day lives.
Use Cairis to create personas and model data flow
CAIRIS stands for Computer Aided Integration of Requirements and Information Security. It is an open source platform for eliciting, specifying, and validating secure and usable systems. It was built from the ground up to support all the elements necessary for usability, requirements, and risk analysis.
Watch Professor Lizzie Coles-Kemp talk about "Digital security for all: why an inclusive security approach matters"
Professor Lizzie Coles-Kemp from the Information Security Group at Royal Holloway University delivered an inaugural lecture titled 'Digital security for all: why an inclusive security approach matters'. at Royal Holloway on 11th October 2018. Professor Coles-Kemp argued that that engaging with the protection of digital technology from the viewpoint of the security of people and society creates a more inclusive approach to digital security and a digital security paradigm for everyone. Connecting digital security to a rich history of security theory, she sets out alternative ways of conceptualising digital security and explore what we can learn from such conceptualisations.