Eric Spero

About

I study how people make cybersecurity decisions under real-world constraints: limited attention, incomplete knowledge, time pressure, and competing goals. My work examines how interfaces and tools shape what people notice, how they interpret security-relevant information, and what actions they are able to take.

My research draws on mental models, bounded rationality, and human factors. I use empirical user studies, interface evaluation, and statistical analysis to design and evaluate security support for end-users and developers.

I also teach a postgraduate course on Usable Security and Privacy, where students engage with foundational research, discuss current issues, and design their own usable-security studies.

Featured Publications

Full list on Google Scholar

- Language as Lure: A Naturalistic Study on Pasifika Phishing Susceptibility
- Eric Spero, Isa Seow, Lucas Betts, Eddie Fuatimau, Robert Biddle, Danielle Lottridge, Giovanni Russello
- USENIX Symposium on Usable Privacy and Security, USENIX, 2025
- PDF Slides
- Site Inspector: Improving Browser Communication of Website Security Information
- Eric Spero, Robert Biddle
- ACM Transactions on Privacy and Security, ACM, 2025
- PDF Firefox Add-on GitHub
- What is Beautiful is Secure
- Milica Stojmenović, Eric Spero, Miloš Stojmenović, Robert Biddle
- ACM Transactions on Privacy and Security, ACM, 2022
- PDF
- Out of Sight, Out of Mind: UI Design and the Inhibition of Mental Models of Security
- Eric Spero, Robert Biddle
- New Security Paradigms Workshop, ACM, 2020
- PDF