Pavlovian Security: How to Change the Way Your Users Respond When the Bell Rings

DerbyCon V - Unity

Presented by: Ben Ten (Ben0xA), Magen Wu (@tottenkoph)
Date: Friday September 25, 2015
Time: 14:00 - 14:50
Location: Track 3
Track: Teach Me

We all have a condition response to certain stimuli. This could be internal or external. As we have been exposed to these stimuli, which at first were neutral, they have caused a Pavlovian conditioned response; like checking your phone, email, etc when it beeps or vibrates. Often times these neutral stimuli become active to produce a trigger-habit- reward feedback loop which modifies behavior. In this talk, we will present how to use this feedback loop to modify the behavior of your users in regards to Security. We will highlight what works and what does not work when attempting to get your users to adopt your Security policies and procedures. We will show you how you can use these methods in the trigger-habit-reward feedback loop to encourage the users to change their security habits; not only in their personal life but in your organization as well. When your users everyday behavior is modified, it makes it easier for their behavior to be modified in your organization. So join us to learn when the bell rings, or the warning box appears, how you can modify your users behavior so they respond securely.

Magen Wu

Ben Ten


KhanFu - Mobile schedules for INFOSEC conferences.
Mobile interface | Alternate Formats