MacAD.UK 2022 Security for Humans

There’s a lot more to IT security than IT. In fact, trying to solve IT security without taking human behaviour into account will lead to failure.

In this talk, i adress how and why humans are weird, lazy, gullible and wonderful, but how they are so in a more or less predictable manner, and how this ties into IT security.

Here are the slides! Not sure they will help you if you haven’t seen the talk ;) . Maybe i should do a blog series of the contents?

Here’s the blog post about it.

Video will be available at some stage.

Sources mentioned in the talk

• Björk: Human Behaviour (see the little hedgehog at the bottom right of the slide? ;)
• Bruce Schneier: Secrets and lies
• FidoNet, which much to my surprise still exists!
• Reaktor
• Elements of happiness, vaguely based on Maslov’s hierarchy of needs. Can’t remember where i learned this from.
• Lt Cmdr Data: Generations
• Newton’s laws on motion (or mechanics), and on thermodynamics
• George Box: All models are wrong
• Daniel Kahneman: Thinking, fast and slow
• Brian Brushwood: The World’s Greatest Con
• Perry Carpenter: 8th Layer Insights podcast
• Perry Carpenter: Transformational security awareness (Amazon UK affiliate link)
• Robert Cialdini: Seven principles of persuasion
• Arbinger Institute: Leadership and self-deception (the Box model)
• Otto Scharmer: Listening
• Nancy Duarte: Resonate (the hero’s journey)
• BJ Fogg: The Fogg Behavour model
• George Edward Woodberry’s corollary on Newton’s Second Law on Thermodynamics

MacADUK 2020 2021 2022

I’ll be at Macaduk in May November 2020 March 2022, or whenever Macaduk will be held, talking about Security for Humans.

I had, at some stage, thought about the subject The Human Sysadmin but maybe that’s a bit too big of a subject, best saved for when i have some more experience in flapping my lips in front of a paying audience.

2019 Official Security

My first ever public talk, on security in an official setting, at Macaduk 2019.

• Video
• Slides

Before this, i’d actually never stood in front of a paying audience and talked before now. The whole prospect was both terrifying and something i felt i should do, given all the effort all others have given through their talks. My time to start giving back.

I’ve posted some shorter cries for help on my blog.