To get the ball rolling —
I co-facilitated a discussion (session notes linked) about conceptual/cultural/consumer barriers that inhibit the adoption of digital security tools and practices in various at-risk communities.
As a group of trainers and trainees, we anecdotally identified a list of these barriers. The goal of this exercise was to brainstorm way to respect and confront unaddressed trainee needs that hinder the adoption and retention of the curricula we teach.
In short, the barriers we ID'd were:
-Linguistic and cultural biases based on age/gender/political background/etc.
-Limitations of organizational time and resources
-Lack of motivation for adoption
-Emotional trauma influencing comprehension and presence
-Assumption of importance of training for recipient (against the day-to-day priorities of trainees)
-Absence of digestible linguistic and visual models to talk about security and encryption
-Separation of online/creative/technical communities hinders diversity of thought
-Absence of toolkits/tools for diverse/marginalized user groups
-Bureaucratic BS
-Lack of availability/resources for training of trainers
-Ethical quandary of authoritatively recommending certain tools (fear of "security marketing")
To re-open the conversation —
What other hindrances have you witnessed in digisec trainings? Have you had success breaking down barriers? What groups are already doing inclusive work that you'd like to shout out?