FlagThis

Abstract

This talk explores the critical intersection of human-computer interaction and security engineering, addressing the "security paradox" where complex defenses lead users to bypass protocols. By analyzing the gap between expert and non-expert security behaviors, the presentation provides a framework for designing "secure by default" systems that align with user mental models. It offers actionable research methodologies for industry engineers and concludes with a forward-looking analysis of how the AI revolution necessitates new paradigms for access control, transparency, and human-AI collaborative defense.