2026
Conference Paper
Title

Empathic Policy Engineering

Title Supplement
A conceptual framework towards effective security communication and compliance
Abstract
Extensive research shows that communication is critical to security compliance, and that gaps in communication directly undermine it. While there are calls to make security policies more usable and to integrate human factors, the field still lacks a structured, holistic framework that explains how these factors interact to drive compliance. This paper addresses that gap by reviewing socio-technical theories that highlight the non-technical elements shaping security behaviour and compliance, and by examining current approaches and common pitfalls in security communication and policy design. Based on this review, we propose Empathic Policy Engineering, a conceptual framework that applies core principles from communication and strengthen compliance.
Author(s)
Arunkumar, Mrudula
Fraunhofer-Institut für Arbeitswirtschaft und Organisation IAO  
Nedic, Daniela  
Fraunhofer-Institut für Arbeitswirtschaft und Organisation IAO  
Schunck, Christian Heinrich
Fraunhofer-Institut für Arbeitswirtschaft und Organisation IAO  
Ben Mamia, Salma
Fraunhofer-Institut für Arbeitswirtschaft und Organisation IAO  
Roßnagel, Heiko  
Fraunhofer-Institut für Arbeitswirtschaft und Organisation IAO  
Mainwork
Conference
Open Access
File(s)
Rights
CC BY-SA 4.0: Creative Commons Attribution-ShareAlike
DOI
Language
English
Keyword(s)