What is the biggest security risk for your computer? For as long as we can recall the IT mantra has been that no computer system or anti-virus can fully protect a computer because it is us, the end user, who poses the greatest security risk. This remains the case in the truest sense of the word, for we can bypass the warning messages and unwittingly download something we really didn’t want to.
There is a new uprising in some parts of our industry who are decrying that victim blaming is not right in any circle, including blaming the user for security vulnerabilities. The idea behind this is that the IT sector has made computer security so un-user friendly that rather than look at ways of improving it, it’s easier to just blame the silly person who clicked on “that link”.
What Is Usable Security?
Instead of trying to teach everybody how to avoid security breaches, the concept of Usable Security is to create security that works, given (or despite) what people do rather than "getting people to do what we want."
It sounds such a simple idea – why can't I use easy-to-remember passwords? Why can't I click on any links in emails without fear? Why do I have to try and stay abreast of IT security updates and news when I have so little interest?
Sadly, although there are moves to make more user-friendly security systems, they are yet to be implemented across the board and for the foreseeable future it is still down to us, the computer users, to be aware and vigilant and to accept that we will feel to blame if we let in a virus.