Using NeuroIS to Improve Security Warning Behavior
by
Anthony Vance
Friday, January 19, 2018
9:00 AM – 10:30 AM (Note that the time has changed)
Speakman Hall Suite 200
Abstract
A popular saying in information security is, “Given a choice between dancing pigs and security, users will pick dancing pigs every time.” However, this statement is unfair—insights from neuroscience show that users’ seemingly lazy or careless security behaviors are not necessarily careless at all, but are a natural consequence of how the brain works.
In this talk, I’ll show how neuroscience can be used to better understand users’ security warning behavior and design more usable security user interfaces (UI). To illustrate, I’ll share insights from a series of experiments that combine functional magnetic resonance imaging (fMRI), tracking and field experiments. The results reveal the substantial effect of neurobiology on users’ security warning behavior, and suggest practical ways to improve security UI.
Bio
Anthony Vance is the Danny & Elsa Lui Distinguished Associate Professor in the Information Technology Management Department at the Shidler College of Business of the University of Hawaiʻi at Mānoa, as well as Associate Professor of Information Systems at the Marriott School of Business of Brigham Young University. He earned Ph.D. degrees in Information Systems from Georgia State University, USA; the University of Paris— Dauphine, France; and the University of Oulu, Finland. His previous experience includes working as a security consultant at Deloitte and as a research professor in the Information Systems Security Research Center at the University of Oulu.
His research focuses on behavioral and neuroscience applications to information security. His work is published in outlets such as MIS Quarterly, Information Systems Research, Journal of Management Information Systems, Journal of the Association for Information Systems, European Journal of Information Systems, Journal of the American Society for Information Science and Technology, and Proceedings of the ACM Conference on Human Factors in Computing Systems (CHI). He currently is an associate editor at MIS Quarterly and serves on the editorial board of Journal of the Association for Information Systems.
Research website:
Blog posts summarizing the attached articles:
https://neurosecurity.byu.edu/misq-longitudinal-2018
https://neurosecurity.byu.edu/dti-isr