SecurityFocus columnist Scott Granneman has recently published a fantastic article explaining how IT professionals should use analogies to explain computer security concepts to non-IT people.
The answer boils down to language. We have to learn to speak to quote-unquote normal people about computers and security in a manner that they can understand and that will inspire them to act in a responsible manner. This really hit home for me when I was reviewing a podcast to see if it would be suitable for my students.
I’d also like to point our readers to a new website that Mr. Granneman has launched: Securityanalogies.com. Securityanalogies.com has been built as a Wiki and has the main goal of helping security and IT pros. explain complicated security concepts to the masses. The Wiki can be edited by anybody, so if you can help enrich its content, you are welcome to do so.