[133973] in cryptography@c2.net mail archive
Re: Fake popup study
daemon@ATHENA.MIT.EDU (Perry E. Metzger)
Wed Sep 24 20:45:43 2008
To: "Steven M. Bellovin" <smb@cs.columbia.edu>
Cc: Cryptography <cryptography@metzdowd.com>
From: "Perry E. Metzger" <perry@piermont.com>
Date: Wed, 24 Sep 2008 20:43:53 -0400
In-Reply-To: <20080924203647.0597666e@cs.columbia.edu> (Steven M. Bellovin's message of "Wed\, 24 Sep 2008 20\:36\:47 -0400")
"Steven M. Bellovin" <smb@cs.columbia.edu> writes:
>> Human factors haven't received nearly enough attention, and as long as
>> human factors failings are dismissed as the fault of "idiot users",
>> they never will.
>>
> Strong agreement.
I don't disagree that much more needs to be done on human factors. I
just don't see it as a panacea. I also think understanding just how
little you can expect from the users, and what the limits are, is
critical.
I have a friend who's mother got conned after a stroke left her
excessively credulous. He arranged for caretakers to read all her
physical and electronic mail before letting her have it. Understanding
the limitations of your user community is important.
Perry
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
