Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Human-Centered Cybersecurity

Human-Centered Cybersecurity (General)

Our team often writes articles or provides presentations that discuss and provide information about human-centered cybersecurity to various audiences, for example, cybersecurity practitioners or fellow researchers.

We are co-hosting the Human-Centered Cybersecurity Series for the Redefining Cybersecurity Podcast (see General Human-Centered Cybersecurity -> Podcasts below).

Currently, we are conducting a multi-phased research project to understand the interactions between human-centered cybersecurity researchers and practitioners. We hope the results will lead to the creation of mutually beneficial “bridges” between the research and practitioner communities that facilitate the relevance and application of research findings to real-world practice. 

 

Publications


Papers

Towards Bridging the Research-Practice Gap: Understanding Researcher-Practitioner Interactions and Challenges in Human-Centered Cybersecurity  paper icon - Julie Haney, Clyburn Cunningham, & Susanne Furman. Symposium on Usable Privacy and Security (SOUPS) (2024)

Towards Integrating Human-Centered Cybersecurity Research Into Practice: A Practitioner Survey paper icon - Julie Haney, Clyburn Cunningham, & Susanne Furman. Symposium on Usable Security and Privacy (USEC) (2024)

Mind the Gap: Exploring Human-Centered Security Researcher-Practitioner Interactions (Extended Poster Abstract) poster icon - Clyburn Cunningham, Susanne Furman, & Julie Haney. Poster session at Symposium on Usable Privacy and Security (SOUPS) (2023).

Podcasts

Putting Human-Centered Security Into Practice with Julie Haney  (September 11, 2024) 

Papers and Handouts

Is Usable Security an Oxymoron? paper icon – Mary Theofanos. IEEE Computer (2020).

Shouldn't All Security Be Usable? paper icon  – Mary Frances Theofanos & Shari Lawrence Pfleeger. IEEE Security & Privacy (2011)

Human-Centered Cybersecurity:Suggested Resources for Small Businesses (July 24, 2024) 

Presentations

ISPAB Panel on Usable Security presentation icon – Mary Theofanos & Ellen Kowalczyk (Oct 29, 2010)

Usability Research in Support of Cybersecurity presentation icon – Mary Theofanos (May 7, 2008)

Poor Usability: The Inherent Insider Threat presentation icon – Mary Theofanos (Mar 21, 2008)

Blogs

Cybersecurity Awareness Month: Securing Devices at Home and Work (2020)

SANS Blog: Humans and Technology: An Insecure Mix (2020)

HelpNet Security: Inside the NIST team working to make cybersecurity more friendly (2019)

Podcasts

Human-Centered Cybersecurity Series with Co-host Julie Haney | Redefining Cybersecurity Podcast with Sean Martin

When Risk Management and Information Security Resonate with Hearts and Minds | A Conversation with Nadine Michaelides and Julie Haney (2024)

Decoding Human-Centered Cybersecurity with Security Attitudes | A Conversation with Julie Haney and Dr. Cori Faklaris (2024)

Integrating Human Factors Engineering in Cybersecurity with Dr. Calvin Nobles (2024)

How Risk Management and Human Behavior Shape Security Strategies: The Untold Impact of Cyber Insurance on Businesses with Dr. Jason Nurse (2024)

Human-Centered Cybersecurity at NIST | Unlocking the Human Factor with Julie Haney (2023)

Other Podcasts

Championing the Human in Cybersecurity | Hacker Valley Media Podcast (2024)

Beyond Technical Skills: Unlocking the Human Element in Cybersecurity | Security Masterminds Podcast (2023)

Usability and Cybersecurity | Conversations in Security Podcast (2023)

Interview with Julie Haney re: NIST Usable Cybersecurity (starting at 9:35) | Paubox HIPAA Critical Podcast (2020)

Created November 17, 2016, Updated December 10, 2024