Issue No.04 - July/August (2008 vol.6)
Bruce Schneier , BT
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2008.85
Bruce Schneier examines prospect theory and how it applies to computer security. The solution is not to sell security directly, but to include it as part of a more general product or service. Vendors need to build security into the products and services that customers actually want. Security is inherently about avoiding a negative, so you can never ignore the cognitive bias embedded so deeply in the human brain. But if you understand it, you have a better chance of overcoming it.
Bruce Schneier, embedded security, prospect theory, risk, computer security, Clear Text
Bruce Schneier, "How the Human Brain Buys Security", IEEE Security & Privacy, vol.6, no. 4, pp. 80, July/August 2008, doi:10.1109/MSP.2008.85