1. How should people make decisions, according to economists?
2. Are you more likely to be killed by a bear or a bee? Why did you answer that way? Why might someone answer the other way?
3. Scenario: Bob, who just got a new laptop, is working on an important project that requires him to use it. If he has a limited amount of time to consider whether to install a virus scanner or not, what will be the first cost or benefit to come to mind? What decision is he likely to make based on that thought?
4. Pick one of the heuristics we discussed in class and come up with another example of how it might apply in cybersecurity
5. Alice is responsible for all cybersecurity decisions in her organization. How should she allocate her attention, and how is she likely to allocate her attention? Consider some examples: a vulnerability that affects a system that does not connect to the Internet, phishing attempts on her users, and Advanced Persistent Threats from nation state actors. Which should she prioritize, and which is she likely to prioritize?
6. How can an end-user tell whether their account is secure? What factors might lead a person to believe that an account was secure when it wasn’t?
Page | 1
![reative Commons License]()
This document is licensed with a Creative Commons Attribution 4.0 International License ©2017
mzlkha
02.Homework2.docx
0
