As researchers who strive to develop effective measures that help individuals and organisations to stay secure, we have observed the public communications that followed the Wannacry ransomware attack of May 2017 with increasing concern. As in previous incidents, many descriptions of the attack are inaccurate – something colleagues have pointed

Crossing the streams: Lizzie Coles-Kemp

Posted by Wendy M. Grossman on  17/05/2017

Category: Blog, People
Lizzie Coles-Kemp, deputy director of RISCS A key goal of RISCS is to approach security from myriad angles. Among RISCS researchers are psychologists and human-computer interaction specialists, as well as representatives of more traditional disciplines such as mathematics and computer science. RISCS deputy director, Royal Holloway professor Lizzie Coles-Kemp, represents

The secondary questions security gap

Posted by Wendy M. Grossman on  04/05/2017

Category: Blog
Angela Sasse at CPDP2017 The BBC reports that a common pastime on Facebook, comparing users’ top ten concerts, may present a security risk. The reason lies in the secondary security questions many websites use as fallback measures to identify users who have forgotten their passwords. Among the standard questions websites

The RISCS story so far…

Posted by Wendy M. Grossman on  23/03/2017

Category: Blog
The second phase of the Research Institute for the Science of Cyber Security (RISCS2) was launched in August 2016. To help understand its goals and focus, this posting outlines its background. The first phase of RISCS (RISCS1) began in October 2012 with £3.8 million in funding over three and a

Theory plus practice

Posted by Wendy M. Grossman on  09/03/2017

Category: Blog
Geraint Price at the first RISCS practitioners panel in February 2017 At the first quarterly RISCS community meeting for 2017, Royal Holloway senior lecturer Geraint Price explained the purpose of the practitioners panel, which he leads. Collaboration, he said, is essential, so that the research RISCS academics undertake has practical