A Festschrift Symposium for Professor Angela Sasse

On 31 March 2026, University College London will be hosting a Festschrift Symposium for Professor Angela Sasse, to recognise and celebrate her contributions to the field of Computer Science and human-centred security specifically. We are seeking scientific contributions to a volume that will be presented at the event. Submissions will be selected by a committee of her students and colleagues, with accepted papers being made available online following the event.

When: 31 March 2026
Where: University College London

Professor Angela Sasse

M. Angela Sasse is the professor of human-centred technology at UCL, and of human-centred security at Ruhr-University Bochum in Germany. She is a pioneer of usable security research and interdisciplinary security research. In recent years, her focus has been empirical research on how large organisations manage cybersecurity risks, in particular in relation to human capital. In 2018 she moved to Ruhr University Bochum in Germany, where she is a speaker of the Exzellenzclusterproject CASA, the interdisciplinary graduate school SecHuman, and the BMBF-funded DigiFit project. She was elected Fellow of the UK Royal Academy of Engineering (2015) and the German National Academy of Sciences "Leopoldina" (2023).

Call for Papers

Updates

13 December 2025: Submission deadline extended to 13 January 2026
1 December 2025: Submissions can now be made at our Microsoft CMT page
22 October 2025: Clarify symposium attendance for authors and copyright
4 February 2026: Announce draft programme for symposium
22 February 2026: Registration open
4 March 2026: Announce list of accepted papers

Timeline

Submission Requirements

Submissions are limited to eight pages in LNCS format excluding bibliography and any appendices, and maximum ten pages total (shorter submissions are encouraged). Authors will retain copyright to their submission, and grant permission for the work to be published under a Creative Commons license. Submissions should be on a topic inspired by, relating to, or commenting on the broad area of Professor Sasse's research. The theme of the event will be "Users Are Not The Enemy" but this should be interpreted as a springboard for ideas rather than as a constraint.

Submission Instructions

Submissions should be made in PDF format by 31 December 2025 at our Microsoft CMT page.

Presentation at the Symposium

It is expected that at least one author of each accepted paper will attend the Festschrift Symposium to present their work. If this will not be possible, please contact the organizers.

Publication and Copyright

The festschrift will be published and made available in print, digital, and PDF formats. Authors retain copyright of their work and must publish their contributions under a Creative Commons 4.0 license of their choice.

License Agreement

Authors of accepted contributions must sign a license agreement granting us the non-exclusive right to publish, distribute, and sell their work as part of the festschrift. One co-author needs to sign and submit the agreement on behalf of all authors.

Note: If some, but not all, of the authors are employees of the U.S. federal government, the form must be signed by one of the authors who is not an employee of the U.S. federal government.

The Festschrift Symposium

The event will be held in University College London on 31 March 2026. Further details will be announced in due course. Sign up for updates below to be notified when these are available.

Draft Programme

Time Session
09:00 – 09:30 Registration & Coffee
09:30 – 09:45 Opening Remarks
09:45 – 11:00 Session 1: Foundations
Papers (6)
  • Even the Enemy is Not the Enemy
    Adam Shostack (Shostack + Associates)
  • Why Ransomware Explains Itself: Usable Security and Operational Dependency
    Mark Quinlan (UCL); Aaron Ceross (University of Birmingham)
  • Guidelines for Usable Security Interventions
    Benjamin Berens, Mattia Mossano, Maxime Veit, Anne Hennig, Melanie Volkamer (Karlsruhe Institute of Technology)
  • Some Users Are Still the Enemy
    Partha Das Chowdhury, Lucy Davies, Kopo Marvin Ramokapane (University of Bristol)
  • Technologists Are Also Not The Enemy (Though They Might Once Have Been)
    Jon Crowcroft, Richard Mortier (Cambridge University)
  • Ensemble auf dem Ruinenberg–Dependability in the Era of AI
    Aad van Moorsel (University of Birmingham)
11:00 – 11:30 Morning Coffee Break
11:30 – 12:45 Session 2: Education and Behaviour
Papers (6)
  • A Human-Centric Review of Phishing Susceptibility Solutions and Literature
    George Raywood-Burke, Tiffany Campbell (Airbus)
  • Transformation Learning Theory for Cyber Security
    Monica T Whitty (Monash University)
  • Cyber Security Awareness Campaigns in the Age of Artificial Intelligence (AI): Do They Still Fail to Change Behaviour?
    Maria Bada (QMUL); Jason R.C. Nurse (University of Kent)
  • What Phishing Click Rates Don't Show
    Sarah Y. Zheng, Ingolf Becker (UCL)
  • Users Are Not Ungrateful: Making Sense of User Resistance to Well-Intentioned Innovation
    Frank Stajano (University of Cambridge)
  • A Journey Towards Understanding the Human Aspects of Hardware Security
    René Walendy, Christof Paar (Max Planck Institute for Security and Privacy); Steffen Becker, Nikol Rummel (Ruhr University Bochum)
12:45 – 14:00 Lunch Break
14:00 – 15:00 Session 3: Operational Practice
Papers (5)
  • Usability of Digital Forensics: A New Approach Inspired by Usable Security
    Tobias Hoppmann, Zinaida Benenson (Friedrich-Alexander-Universität Erlangen-Nürnberg)
  • Users Are Not the Enemy: Human-Centred Security Failures in Whistleblowing Practice
    Diana A. Vasile, Daniel Hugenroth, Alastair R. Beresford (University of Cambridge)
  • Police Officers Are Not the Enemy: Applying Usable Security Knowledge and Principles to Digital Device Triage in Policing
    Mark Warner, Valeria Abreu Minero, Catherine O'Brien (UCL)
  • Disciplines Are Not the Enemy: Three Insights from an Interdisciplinary Project on Everyday Security
    Zinaida Benenson, Dennis Eckhardt, Felix Freiling (Friedrich-Alexander-Universität Erlangen-Nürnberg); Henrich C. Pöhls (University of Passau)
  • Users Are Not the Enemy: How Organisations Allocate Blame Through Security Practices
    Ivan Flechais (University of Oxford)
15:00 – 15:30 Afternoon Tea Break
15:30 – 16:20 Session 4: AI, Ethics & Societal Values
Papers (4)
  • Disagreement Is Not the Enemy: From Socio-Technical Debates to Ethico-Technical Deliberations in Security, Privacy, and AI
    Matthew Smith (University of Bonn)
  • Expert Guardrails, Everyday Consequences – Agentic AI and the Reblaming of Users
    Andreas Gutmann (UCL)
  • Users as Allies: Why Clinicians Are Key to Explainable Clinical AI
    Hendrik Knoche, Hamzah Ziadeh (Aalborg University)
  • Sometimes, Just Sometimes, the User is the Enemy
    Elizabeth A. Quagli, Peter Y A Ryan (University of Luxembourg)
16:20 – 17:00 Closing Plenary / Q&A
17:00 – 18:30 Reception

Registration

The event is only for registered attendees. To register, please request your ticket through the UCL online store. Thanks to support from UCL, registration is free. Attendees may optionally purchase a copy of the proceedings for an additional £10. Registration closes on 24 March 2026.

Sign up for updates

To receive updates and reminders about Sassefest (e.g. when submission instructions are available, registration open, etc.), fill out your email address on the form here: https://forms.cloud.microsoft/e/3Td67rmrKa.

Acknowledgements

We also extend our thanks to Dan Ristea for his diligent work as the publication chair. Special thanks are due to Lizzie Howie for her cover design and administrative support throughout the planning process. The Microsoft CMT service was used for managing the peer-reviewing process for this conference. Finally, we are deeply grateful to the UCL Department of Computer Science for their generous support and for hosting this Festschrift Symposium.

Organisers

You can contact us at: sassefest@cs.ucl.ac.uk.

Steven Murdoch
Ingolf Becker
Simon Parkin
Ruba Abu-Salma
Sacha Brostoff