Lorrie Cranor: Why Security Fails Real People [Afternoon Cyber Tea]

CyberWire Daily

N2K Networks, Inc.

Tech News, News, Daily News, Technology

4.6 • 1K Ratings

🗓️ 31 December 2025

⏱️ 22 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

While our team is out on winter break, please enjoy this episode of Afternoon Cyber Tea with Ann Johnson from our partners at Microsoft Security. Dr. Lorrie Cranor, Director of the CyLab Security and Privacy Institute at Carnegie Mellon University joins Ann Johnson, Corporate Vice President, Microsoft, on this week's episode of Afternoon Cyber Tea to discuss the critical gap between security design and real-world usability. They explore why security tools often fail users, the ongoing challenges with passwords and password less authentication, and how privacy expectations have evolved in an era of constant data collection. Dr. Cranor emphasizes the importance of user-centered design, practical research, behavioral insights, and simpler, more transparent systems to help CISOs build security programs that truly work for people. Resources: View Lorrie Cranor on LinkedIn View Ann Johnson on LinkedIn Related Microsoft Podcasts: Microsoft Threat Intelligence Podcast The BlueHat Podcast Uncovering Hidden Risks Discover and follow other Microsoft podcasts at microsoft.com/podcasts Afternoon Cyber Tea with Ann Johnson is produced by Microsoft, Hangar Studios and distributed as part of N2K media network. Learn more about your ad choices. Visit megaphone.fm/adchoices

Transcript

Click on a timestamp to play from that location

0:00.0	You're listening to the Cyberwire Network, powered by N2K.
0:05.7	Welcome to Afternoon CyberWire Network, where we explore the intersection of innovation and cybersecurity.
0:22.6	I'm your host, Dan Johnson.
0:24.7	From the front lines of digital defense to groundbreaking advancement shaping our digital future,
0:30.3	we will bring you the latest insights, expert interviews, and captivating stories to stay one step ahead.
0:41.0	Today, and captivating stories to stay one step ahead. Today I am joined by Dr. Lori Kraner,
0:43.9	director of the SciLab Security and Privacy Institute
0:46.9	at Carnegie Mellon University,
0:49.3	and one of the world's leading researchers
0:51.2	on usable security and privacy.
0:53.9	Lori's groundbreaking work has transformed how we think about authentication,
0:58.4	passwords, and the human side of cybersecurity.
1:01.9	Lori, welcome to afternoon CyberTee.
1:04.3	Thank you.
1:05.3	So I am really excited to dig into your research and what it means for our chief
1:09.4	information security officers who are
1:11.1	trying to build security that works not just in theory, but in practice.
1:15.3	And I definitely want to start with this usability gap we have in cybersecurity.
1:19.4	I know you have spent your career studying how people actually interact with security tools.
1:24.4	So can you tell the audience, why does so many security controls fail in practice? And what
1:29.1	does that tell us about the usability gap? Yeah, I think in practice, when people are designing
1:34.4	security tools, they're focused on security. And they often don't take the time to think about
	...

Transcript will be available on the free plan in 10 days. Upgrade to see the full transcript now.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from N2K Networks, Inc., and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of N2K Networks, Inc. and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.