"Using Psychology to Bolster Cybersecurity"

Reimagining Security with Cyberpsychology-Informed Network Defenses (ReSCIND) is a new cyberpsychology research program from the US Defense Department's Intelligence Advanced Research Projects Activity (IARPA) that focuses on how cybercriminals act and think. According to IARPA program manager Kimberly Ferguson-Walter, the ReSCIND program aims to research the cyberpsychology of cybercriminals to identify their cognitive flaws and improve cybersecurity. The research could result in cyber defenses that delay or prevent attacks by exploiting these vulnerabilities to influence the behavior of attackers. ReSCIND will use scientific methods on human subjects exhibiting cybercriminal behavior. Ferguson-Walter noted that traditional deception techniques have involved fake machines and passwords to lure and distract cybercriminals while simultaneously alerting cyber defenders. Current deception methods use advances in emerging technologies to protect Information Technology (IT) and Operational Technology (OT) environments. Cyberpsychologists and cybersecurity experts have high hopes for cyberpsychology improvements to cybersecurity. This article continues to discuss how cyberpsychology could strengthen cybersecurity.

CACM reports "Using Psychology to Bolster Cybersecurity"

Submitted by grigby1