Human Aspects of Information Security and Assurance

This book constitutes the proceedings of the 16th IFIP WG 11.12 International Symposium on Human Aspects of Information Security and Assurance, HAISA 2022, held in Mytilene, Lesbos, Greece, in July 2022. The 25 papers presented in this volume were carefully reviewed and selected from 30 submissions. They are organized in the following topical sections: cyber security education and training; cyber security culture; privacy; and cyber security management.

Inhalt
Cyber Security Education & Training.- Visual Programming in Cyber Range Training to Improve Skill Development.- Survey of users' willingness to adopt and pay for cybersecurity training.- A Thematic Content Analysis of the Cybersecurity Skills Demand in South Africa.- Applying PDCA to Security, Education, Training and Awareness Programs.- Exploring CyBOK with Topic Modeling Techniques.- COLTRANE Towards a methodology and platform supported educational basis for cybersecurity education.- An investigation into educational process models for teaching secure programming.- Cybersecurity Knowledge Requirements for a Water Sector Employee.- CAP: Patching the Human Vulnerability.- A novel framework for the development of age appropriate information security serious games.- Cyber Security Culture.- Security Culture in Industrial Control Systems Organisations: A literature review.- Systematic review of factors that influence the cybersecurity culture.- Cyber4Dev Security Culture Model for African Countries.- A model for information security culture with innovation and creativity as enablers.- Understanding phishing in mobile instant messaging: A study into user behaviour toward shared links.- Privacy.- How privacy concerns impact Swedish citizens' willingness to report crimes.- Your Cookie Disclaimer is not in line with the ideas of the GDPR. Why.- A Survey of Australian Attitudes Towards Privacy: Some Preliminary Results.- Designing and Evaluating a Prototype for Data-related Privacy Controls in a Smart Home.- Cyber Security Management.- An Exploratory Factor Analysis of Personality Factors: An Insider Threat Perspective.- Policy components - a conceptual model for tailoring information security policies.- Security fatigue: A case study of data specialists.- Factors Influencing Cybercrime Reporting Behaviour in South African State-Owned Entities.- Online security attack experience and worries of young adults in the United Kingdom.- PowerQoPE: A Personal Quality of Internet Protection and Experience Configurator.