Skip to main content
USENIX
  • Conferences
  • Students
Sign in
  • Overview
  • Proceedings
  • Past Symposia

twitter

Tweets by @usenix

usenix conference policies

  • Event Code of Conduct
  • Conference Network Policy
  • Statement on Environmental Responsibility Policy

You are here

Home » “...No one Can Hack My Mind”: Comparing Expert and Non-Expert Security Practices
Tweet

connect with us

“...No one Can Hack My Mind”: Comparing Expert and Non-Expert Security Practices

Authors: 

Iulia Ion, Rob Reeder, and Sunny Consolvo, Google

Abstract: 

The state of advice given to people today on how to stay safe online has plenty of room for improvement. Too many things are asked of them, which may be unrealistic, time consuming, or not really worth the effort. To improve the security advice, our community must find out what practices people use and what recommendations, if messaged well, are likely to bring the highest benefit while being realistic to ask of people. In this paper, we present the results of a study which aims to identify which practices people do that they consider most important at protecting their security online. We compare self-reported security practices of non-experts to those of security experts (i.e., participants who reported having five or more years of experience working in computer security). We report on the results of two online surveys—one with 231 security experts and one with 294 MTurk participants—on what the practices and attitudes of each group are. Our findings show a discrepancy between the security practices that experts and non-experts report taking. For instance, while experts most frequently report installing software updates, using two-factor authentication and using a password manager to stay safe online, non-experts report using antivirus software, visiting only known websites, and changing passwords frequently.

Iulia Ion, Google

Rob Reeder, Google

Sunny Consolvo, Google

Open Access Media

USENIX is committed to Open Access to the research presented at our events. Papers and proceedings are freely available to everyone once the event begins. Any video, audio, and/or slides that are posted after the event are also free and open to everyone. Support USENIX and our commitment to Open Access.

BibTeX
@inproceedings {192406,
author = {Iulia Ion and Rob Reeder and Sunny Consolvo},
title = {{{\textquotedblleft}...No} one Can Hack My {Mind{\textquotedblright}}: Comparing Expert and {Non-Expert} Security Practices},
booktitle = {Eleventh Symposium On Usable Privacy and Security (SOUPS 2015)},
year = {2015},
isbn = {978-1-931971-249},
address = {Ottawa},
pages = {327--346},
url = {https://www.usenix.org/conference/soups2015/proceedings/presentation/ion},
publisher = {USENIX Association},
month = jul,
}
Download
Ion PDF
  • Log in or    Register to post comments

© USENIX

  • Privacy Policy
  • Contact Us