• DocumentCode
    1958735
  • Title

    Security and Usability: Analysis and Evaluation

  • Author

    Kainda, Ronald ; Flechais, I. ; Roscoe, A.W.

  • Author_Institution
    Oxford Univ. Comput. Lab., Oxford, UK
  • fYear
    2010
  • fDate
    15-18 Feb. 2010
  • Firstpage
    275
  • Lastpage
    282
  • Abstract
    The differences between the fields of Human-Computer Interaction and Security (HCISec) and Human-Computer Interaction (HCI) have not been investigated very closely. Many HCI methods and procedures have been adopted by HCISec researchers, however the extent to which these apply to the field of HCISec is arguable given the fine balance between improving the ease of use of a secure system and potentially weakening its security. That is to say that the techniques prevalent in HCI are aimed at improving users´ effectiveness, efficiency or satisfaction, but they do not take into account the potential threats and vulnerabilities that they can introduce. To address this problem, we propose a security and usability threat model detailing the different factors that are pertinent to the security and usability of secure systems, together with a process for assessing these.
  • Keywords
    human computer interaction; security of data; HCI security; human computer interaction; security threat model; usability threat model; Availability; Cryptography; Human computer interaction; Laboratories; Security; Software safety; Software standards; Software systems; Usability; User interfaces; Evaluation; HCISec; Security; Threat model; Usability;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Availability, Reliability, and Security, 2010. ARES '10 International Conference on
  • Conference_Location
    Krakow
  • Print_ISBN
    978-1-4244-5879-0
  • Type

    conf

  • DOI
    10.1109/ARES.2010.77
  • Filename
    5438081
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=1958735