Understanding and Designing for End Users' Security Expectations

Wednesday, February 1, 2017 - 11:00am–11:30am

Franziska Roesner, University of Washington


As technology designers, we must do two things to build systems that are both usable and meaningfully secure. First, we must work to understand the actual security and privacy needs and expectations of our target user groups. Second, we must think not only about how to communicate better with users superficially, but about how to (re)design our systems more fundamentally to better match their needs and expectations. In this talk, I will describe a set of studies illustrating this approach, bringing together usable security and system design. Specifically, I will touch on lessons from our work studying and designing for sensitive communications among journalists/sources and lawyers/clients.

Franziska Roesner, University of Washington

Franziska (Franzi) Roesner is an Assistant Professor in Computer Science and Engineering at the University of Washington, where she co-directs the Security and Privacy Research Lab. Her research focuses on understanding and improving computer security and privacy for end users of existing and emerging technologies, including the web, smartphones, and emerging augmented reality and IoT platforms. Her work on application permissions in modern operating systems received the Best Practical Paper Award at the IEEE Symposium on Security and Privacy, her early work on security and privacy for augmented reality was featured on the cover of the Communications of the ACM magazine, and her defense for tracking by social media widgets on the web was incorporated into the Electronic Frontier Foundation’s Privacy Badger tool. She received her PhD from the University of Washington in 2014 and her BS from the University of Texas at Austin in 2008.

Open Access Media

USENIX is committed to Open Access to the research presented at our events. Papers and proceedings are freely available to everyone once the event begins. Any video, audio, and/or slides that are posted after the event are also free and open to everyone. Support USENIX and our commitment to Open Access.

@conference {202047,
author = {Franziska Roesner},
title = {Understanding and Designing for End Users{\textquoteright} Security Expectations},
year = {2017},
address = {Oakland, CA},
publisher = {USENIX Association},
month = jan

Presentation Video