Venue
The workshop will be held at the University of Vienna, in Austria, hosted by the IEEE Symposium on Security and Privacy (EuroS&P).Terminology
The term "socio-technical" means a reciprocal relationship between technology and people.
Concept
Successful attacks on information systems often exploit not only IT systems and networks but also the human element in the system. Therefore, it is critical to limit technical vulnerabilities as well as insecure user behavior, poorly designed user interfaces, and unclear or unrealistic security policies.
To improve the security of systems, technology designers and policymakers must consider user needs and characteristics. Social science and usable security researchers have shown that insecure user behavior stems from cognitive, emotional, and social perspectives. When there is a good 'fit' of technology for users, workable security policies and targeted behavioral support can augment technical security.
Goals
The workshop intends to stimulate an exchange of ideas on how to design systems that are secure in the world where they interact with users of varying lived experiences and diverse needs. STAST aims at bringing together experts working in various areas of computer security as well as in social and behavioral sciences.
Duration
STAST is a one day workshop.