The Psychology of Security Flashcards Preview

IT 350 - Fundamentals of Data Security > The Psychology of Security > Flashcards

Flashcards in The Psychology of Security Deck (35)
Loading flashcards...
1
Q

What are the metrics of risk that people tend to mis-evaluate?

A

The areas that people mis-judge risk in are:

  • The severity of the risk
  • The probability of the risk
  • The magnitude of the risk
  • How effective countermeasure are in mitigating the risk
  • How well the risk and the cost of risks can be compared
2
Q

Exaggerate or Downplay: Spectacular risk

A

Exaggerated

3
Q

Exaggerate or Downplay: Rare risk

A

Exaggerated

4
Q

Exaggerate or Downplay: Personified risk

A

Exaggerated

5
Q

Exaggerate or Downplay: Risks beyond their control, or externally imposed

A

Exaggerated

6
Q

Exaggerate or Downplay: Talked about risk

A

Exaggerated

7
Q

Exaggerate or Downplay: Intentional or man-made risk

A

Exaggerated

8
Q

Exaggerate or Downplay: Immediate risk

A

Exaggerated

9
Q

Exaggerate or Downplay: Sudden risk

A

Exaggerated

10
Q

Exaggerate or Downplay: Risks that are personal

A

Exaggerated

11
Q

Exaggerate or Downplay: New and unfamiliar risk

A

Exaggerated

12
Q

Exaggerate or Downplay: Uncertain risk

A

Exaggerated

13
Q

Exaggerate or Downplay: Risk directed against their children

A

Exaggerated

14
Q

Exaggerate or Downplay: Morally offensive risk

A

Exaggerated

15
Q

Exaggerate or Downplay: Risk entirely without redeeming features

A

Exaggerated

16
Q

Exaggerate or Downplay: Risks not like their current situation

A

Exaggerated

17
Q

Exaggerate or Downplay: Pedestrian risk

A

Downplayed

18
Q

Exaggerate or Downplay: Common risk

A

Downplayed

19
Q

Exaggerate or Downplay: Anonymous risk

A

Downplayed

20
Q

Exaggerate or Downplay: More under their control, or taken willingly risk

A

Downplayed

21
Q

Exaggerate or Downplay: Not discussed risk

A

Downplayed

22
Q

Exaggerate or Downplay: Natural risk

A

Downplayed

23
Q

Exaggerate or Downplay: Long-term or diffuse risk

A

Downplayed

24
Q

Exaggerate or Downplay: Risk that evolves slowly over time

A

Downplayed

25
Q

Exaggerate or Downplay: Risk that affects others

A

Downplayed

26
Q

Exaggerate or Downplay: Familiar risk

A

Downplayed

27
Q

Exaggerate or Downplay: Well understood risk

A

Downplayed

28
Q

Exaggerate or Downplay: Risk directed towards themselves

A

Downplayed

29
Q

Exaggerate or Downplay: Morally desirable risk

A

Downplayed

30
Q

Exaggerate or Downplay: Risk associated with some ancillary benefit

A

Downplayed

31
Q

Exaggerate or Downplay: Risk like their current situation

A

Downplayed

32
Q

What is optimism bias?

A

Optimism bias is the belief that we will generally do better at task than other people. We generally believe good outcomes are more common than bad ones.

33
Q

What is control bias?

A

Control bias is the belief that things are less risk-prone if we feel like we have some manner of control.

34
Q

Define affect heuristics.

A

Affect heuristics state that the more of an overall good feeling someone has towards a situation lowers their perception of risk.

35
Q

What is representativeness heuristics?

A

Representativeness heuristics state that the probability of an item belonging to a particular class is based on how ell that example “represents” the class. Basically stereotypes.