Search results

  1. A Self-Report Measure of End-User Security Attitudes (SA-6)

    Cori Faklaris, Laura Dabbish, and Jason I. Hong, Carnegie Mellon University We present SA-6, a six-item scale for assessing people’s security attitudes that we developed by following standardized processes for scale development. We identify six scale item ...

    admin - December 1, 2021 - 7:30 am

  2. Cooperative Privacy and Security: Learning from People with Visual Impairments and Their Allies

    Jordan Hayes, Smirity Kaushik, Charlotte Emily Price, and Yang Wang, Syracuse University To better inform privacy/security designs for people with disabilities, we “shadowed” people with visual impairments and their allies (e.g., friends, family members, ...

    admin - December 1, 2021 - 7:30 am

  3. An Empirical Analysis of Data Deletion and Opt-Out Choices on 150 Websites

    Hana Habib, Carnegie Mellon University; Yixin Zou, University of Michigan; Aditi Jannu, Neha Sridhar, Chelse Swoopes, Alessandro Acquisti, Lorrie Faith Cranor, and Norman Sadeh, Carnegie Mellon University; Florian Schaub, University of Michigan Many websi ...

    admin - December 1, 2021 - 7:30 am

  4. The Effect of Entertainment Media on Mental Models of Computer Security

    Kelsey R. Fulton, Rebecca Gelles, Alexandra McKay, Richard Roberts, Yasmin Abdi, and Michelle L. Mazurek, University of Maryland When people inevitably need to make decisions about their computer-security posture, they rely on their mental models of threa ...

    admin - December 1, 2021 - 7:30 am

  5. Communicating Device Confidence Level and Upcoming Re-Authentications in Continuous Authentication Systems on Mobile Devices

    Lukas Mecke, University of Applied Sciences Munich, Munich, Germany and LMU Munich, Munich, Germany; Sarah Delgado Rodriguez and Daniel Buschek, LMU Munich, Munich, Germany; Sarah Prange, University of Applied Sciences Munich, Munich, Germany and Bundeswe ...

    admin - December 1, 2021 - 7:30 am

  6. Exploring Intentional Behaviour Modifications for Password Typing on Mobile Touchscreen Devices

    attacks, this paper presents the first study on understanding users’ ability to modify their typing ...

    admin - December 1, 2021 - 7:30 am

  7. Why people (don't) use password managers effectively

    Sarah Pearman, Shikun Aerin Zhang, Lujo Bauer, Nicolas Christin, and Lorrie Faith Cranor, Carnegie Mellon University Security experts often recommend using password-management tools that both store passwords and generate random passwords. However, researc ...

    admin - December 1, 2021 - 7:30 am

  8. A Typology of Perceived Triggers for End-User Security and Privacy Behaviors

    Sauvik Das, Georgia Institute of Technology; Laura A. Dabbish and Jason I. Hong, Carnegie Mellon University What triggers end-user security and privacy (S&P) behaviors? How do those triggers vary across individuals? When and how do people share their ...

    admin - December 1, 2021 - 8:30 am

  9. The Fog of Warnings: How Non-essential Notifications Blur with Security Warnings

    be substantial. However, this problem has not been empirically examined before. This paper ...

    admin - December 1, 2021 - 8:30 am

  10. “There is nothing that I need to keep secret”: Sharing Practices and Concerns of Wearable Fitness Data

    Abdulmajeed Alqhatani and Heather Richter Lipford, University of North Carolina at Charlotte There has been increasing use of commercial wearable devices for tracking fitness-related activities in the past few years. These devices sense and collect a vari ...

    admin - December 1, 2021 - 8:30 am

  11. Certified Phishing: Taking a Look at Public Key Certificates of Phishing Websites

    if the information contained in them could be used to detect phishing websites. In this paper we take ...

    admin - August 2, 2022 - 9:46 am

  12. Replication: No One Can Hack My Mind Revisiting a Study on Expert and Non-Expert Security Practices and Advice

    Karoline Busse and Julia Schäfer, University of Bonn; Matthew Smith, University of Bonn/Fraunhofer FKIE A 2015 study by Iulia Ion, Rob Reeder, and Sunny Consolvo examined the self-reported security behavior of security experts and non-experts. They also a ...

    admin - December 1, 2021 - 8:30 am

  13. Usability Smells: An Analysis of Developers’ Struggle With Crypto Libraries

    Nikhil Patnaik, Joseph Hallett, and Awais Rashid, University of Bristol Green and Smith propose ten principles to make cryptography libraries more usable, but to what extent do the libraries implement these principles? We undertook a thematic analysis of ...

    admin - December 1, 2021 - 8:30 am

  14. Of Two Minds about Two-Factor: Understanding Everyday FIDO U2F Usability through Device Comparison and Experience Sampling

    for everyday Web browsing. In this paper we contribute to the growing usable security literature on ...

    admin - December 1, 2021 - 8:30 am

  15. System Administrators Prefer Command Line Interfaces, Don't They? An Exploratory Study of Firewall Interfaces

    Artem Voronkov, Leonardo A. Martucci, and Stefan Lindskog, Karlstad University A graphical user interface (GUI) represents the most common option for interacting with computer systems. However, according to the literature system administrators often favor ...

    admin - December 1, 2021 - 8:30 am

  16. "I don't own the data": End User Perceptions of Smart Home Device Data Practices and Risks

    Madiha Tabassum, University of North Carolina at Charlotte; Tomasz Kosinski, Chalmers University of Technology; Heather Lipford, University of North Carolina at Charlotte Smart homes are more connected than ever before, with a variety of commercial device ...

    admin - December 1, 2021 - 8:30 am

  17. "Something isn't secure, but I'm not sure how that translates into a problem": Promoting autonomy by designing for understanding in Signal

    Justin Wu, Cyrus Gattrell, Devon Howard, and Jake Tyler, Brigham Young University; Elham Vaziripour, Utah Valley University; Kent Seamons and Daniel Zappala, Brigham Young University Security designs that presume enacting secure behaviors to be beneficial ...

    admin - December 1, 2021 - 8:30 am

  18. A Usability Study of Five Two-Factor Authentication Methods

    Ken Reese, Trevor Smith, Jonathan Dutson, Jonathan Armknecht, Jacob Cameron, and Kent Seamons, Brigham Young University Two-factor authentication (2FA) defends against account compromise. An account secured with 2FA typically requires an individual to aut ...

    admin - December 1, 2021 - 9:30 am

  19. More than Smart Speakers: Security and Privacy Perceptions of Smart Home Personal Assistants

    Noura Abdi, King's College London; Kopo M. Ramokapane, University of Bristol; Jose M. Such, King's College London Smart Home Personal Assistants (SPA) such as Amazon Echo/Alexa and Google Home/Assistant have made our daily routines much more con ...

    admin - December 1, 2021 - 9:30 am

  20. "I was told to buy a software or lose my computer. I ignored it": A study of ransomware

    Camelia Simoiu, Stanford University; Christopher Gates, Symantec; Joseph Bonneau, New York University; Sharad Goel, Stanford University Ransomware has received considerable news coverage in recent years, in part due to several cases against high-profile c ...

    admin - December 1, 2021 - 9:30 am

  21. Keepers of the Machines: Examining How System Administrators Manage Software Updates For Multiple Machines

    University Awarded Distinguished Paper! Keeping machines updated is crucial for maintaining system security. ... machines up-to-date. In this paper, we study how system administrators manage software updates. We surveyed ...

    admin - December 1, 2021 - 9:30 am

  22. Privacy and Security Threat Models and Mitigation Strategies of Older Adults

    Alisa Frik, International Computer Science Institute (ICSI) and University of California, Berkeley; Leysan Nurgalieva, University of Trento; Julia Bernd, International Computer Science Institute (ICSI); Joyce Lee, University of California, Berkeley; Flori ...

    admin - December 1, 2021 - 9:30 am

  23. How Sharp is SHARP?

    paper, we discuss and debate the subtle issues that are left unanswered in the original SHARP paper ...

    admin - December 1, 2021 - 4:30 am

  24. Breaking Turtles All the Way Down: An Exploitation Chain to Break out of VMware ESXi

    interest, yet lacking a thorough evaluation of its security internals. In this paper, we give ...

    admin - December 1, 2021 - 4:30 am

  25. Cross-Router Covert Channels

    Adar Ovadia, Rom Ogen, Yakov Mallah, Niv Gilboa, and Yossi Oren, Ben-Gurion University of the Negev Many organizations protect secure networked devices from non-secure networked devices by assigning each class of devices to a different logical network. Th ...

    admin - December 1, 2021 - 4:30 am

Pages