The following posters will be presented during the Poster Session on Monday, August 7, 2023, from 5:30 pm–6:45 pm. Posters and their abstracts are available for download below to registered attendees now and to everyone beginning Monday, August 7, 2023. Copyright to the individual works is retained by the author[s].
Note: Use the poster numbers to locate them in the room during the poster session.
Unpublished Work
Posters of unpublished research.
[#1] Pushed by Accident – Prevention and Remediation Strategies Against Secret Leakage
Alexander Krause, CISPA Helmholtz Center for Information Security; Jan H. Klemmer and Nicolas Huaman, Leibniz University Hannover; Dominik Wermke, CISPA Helmholtz Center for Information Security; Yasemin Acar, Paderborn University; Sascha Fahl, CISPA Helmholtz Center for Information Security
[#2] Device Specific Mental Models of Security
Jacqueline White and Heather Lipford, UNC Charlotte
[#3] Mind the Gap: Exploring Human-Centered Security Researcher-Practitioner Interactions
Clyburn Cunningham, Susanne Furman, and Julie Haney, National Institute of Standards and Technology
[#4] A Usability Evaluation of Money Transfer Apps in the United States
Chisaki Nakaizumi, Sara Patel, Brianna Wang, Hiroki Kimura, Rebecca Li, Yueming Yuan, Karen Sowon, and Lorrie Faith Cranor, Carnegie Mellon University
[#5] Ask the Consumers: What Should be on IoT Privacy & Security Labels?
Claire Chen, Dillon Shu, Hamsini Ravishankar, Yifeng Zeng, Laxita Jain, Yuvraj Agarwal, and Lorrie Faith Cranor, Carnegie Mellon University
[#6] You Received an Email from Your Advisor? A Case Study of Phishing Scams in a University Setting
Aiping Xiong, Sian Lee, Zekun Cai, Ephraim N. Govere, and Harish Kolla, Penn State University
[#7] SoK: Analysis of User-Centered Studies Focusing on Healthcare Privacy & Security
Faiza Tazi, University of Denver; Archana Nandakumar, University of Washington; Josiah Dykstra, Designer Security; Prashanth Rajivan, University of Washington; Sanchari Das, University of Denver
[#8] Beyond Mobile Devices: A Cross-Device Solution for Smishing Detection and Prevention
Akira Kanaoka, KDDI Research Inc./ Toho University; Takamasa Isohara, KDDI Research Inc.
[#9] Identifying New Challenges In The Oculus Permissions Framework
Sarah Radway and Daniel Votipka, Tufts University
[#10] MARI: Semi-Automated, Human-in-the-Loop Redaction of Text Corpora
Emma I. C. Peterson, Valerie Zhao, Dan Byrne, and Blase Ur, University of Chicago
[#12] “We should not do this, but we use WhatsApp” - Exploring Patient Data Exchange between Healthcare Professionals
Simon Anell, CISPA Helmholtz Center for Information Security; Francisco Nunes, Fraunhofer Portugal AICOS; Katharina Krombholz, CISPA Helmholtz Center for Information Security
[#13] Interdisciplinary Human-Centered Security Research: Learning From Opportunities and Challenges of a German Graduate Program
Jonas Hielscher, Uta Menges, and Leona Lassak, Ruhr University Bochum; Hanna Püschel, TU Dortmund University; Olga Skrebec, Ruhr University Bochum; Christine Utz, CISPA Helmholtz Center for Information Security
[#14] How to Scale a Phish: An Investigation Into the Use of the NIST Phish Scale
Shanée Dawkins and Jody Jacobs, NIST
[#15] FB Privacy Helper: A Browser Extension That Simplifies Facebook Ad Privacy Settings
Annie Chen, Sean Scarnecchia, Jane Im, Tanisha Afnan, Byron M. Lowens, and Florian Schaub, University of Michigan
[#16] Participatory Design Study about Privacy Enhancing Technologies for Wearable Activity Tracker Data Sharing
Noé Zufferey, University of Lausanne; Kavous Salehzadeh Niksirat, University of Lausanne and EPFL; Mathias Humbert and Kévin Huguenin, University of Lausanne
[#17] Femtech Data Privacy: A Preliminary Analysis of Mobile App Interfaces
Nidhi Nellore and Michael Zimmer, Marquette University
[#18] Beware of website hackers: Developing an awareness video to warn for website hacking
Anne Hennig, Leoni Schmidt-Enke, and Miriam Mutter, Karlsruhe Institute of Technology; Peter Mayer, University of Southern Denmark
[#19] Introducing Data Trustees: A Vignette-Based Study Approach to Get Users in the Loop
Leona Lassak, Ruhr University Bochum; Hanna Püschel and Tobias Gostomzyk, TU Dortmund University; Markus Dürmuth, Leibniz University Hannover
[#20] Cybersecurity Definitions for Non-Experts
Lorenzo Neil, North Carolina State University; Julie Haney and Kerrianne Buchanan, National Institute of Standards and Technology; Charlotte Healy, University of Maryland, College Park
[#21] The State or Private Enterprise? — The Shift in Users’ Preference for the Provider of an Identity Wallet
Sandra Kostic, Fraunhofer AISEC; Maija Poikela, Berlin Institute of Health at Charité
[#22] Designing a User-centric Verifiable Lottery Interface: A Case Study on Course Selection
Li-Fei Kung, Hsun Lee, Wen-Ning Chen, and Ching-Shiuan Chen, National Taiwan University; Wei Jeng, National Taiwan University, National Institute of Cyber Security
[#23] Exploring Privacy and Security Concerns of EdTech Users: A Qualitative Analysis of User Written Reviews
Waqar Hassan Khan and Protik Bose Pranto, Arizona State University; Tianyi Yang, University of Southern California; Rakibul Hasan, Arizona State University
[#24] Exploring the Impact of Ethnicity on Susceptibility to Voice Phishing
Aritra Ray and Sohini Saha, Duke University; Krishnendu Chakrabarty, Arizona State University; Leslie Collins, Kyle Lafata, and Pardis Emami-Naeini, Duke University
[#25] Analyzing Developers’ Perceptions, Attitudes and Challenges in Complying with Mobile App Store Privacy Requirements
Geetika Gopi, Peter Meyers, Thanyanun Charoensiritanasin, Jayson Jin, Ragashree Mysuru Chandrashekar, Lorrie Faith Cranor, and Tianshi Li, Carnegie Mellon University
[#26] User Comprehension of Technical Terms in Privacy Policies and Expectations of the Privacy Protection Law in Japan
Sachiko Kanamori, NICT; Miho Ikeda and Kumiko Kameishi, NTT; Ayako A. Hasegawa, NICT
[#28] Human-AI Collaboration for Sustainable Security: Opportunities and Challenges
Wanling Cai, Trinity College Dublin & Lero; Liliana Pasquale, University College Dublin & Lero, SFI Research Centre for Software; Kushal Ramkumar, University College Dublin & Lero; John McCarthy, University College Cork & Lero, Ireland; Bashar Nuseibeh, University of Limerick & The Open University & Lero; Gavin Doherty, Trinity College Dublin & Lero
[#29] Peering into the Phish Bowl: An Analysis of Real-World Phishing Cues
Lorenzo Neil, North Carolina State University; Shanee Dawkins, Jody Jacobs, and Julia Sharp, NIST
[#30] Measuring the Effectiveness of Spinner-based Randomized-Response Differential Privacy Communication for Sensitive Data Sharing
Seoyoung Ko, Sriram Viswanathan, Alan Esquenazi, Swadhin Routray, Jatan Loya, Tianshi Li, and Lorrie Faith Cranor, Carnegie Mellon University
[#31] Voice Privacy Assistant for Monitoring In-home Voice Commands
Bang Tran and Xiaohui Liang, University of Massachusetts Boston; Gabriel Ghinita, Hamad Bin Khalifa University; Caroline Summerour and John A. Batsis, Division of Geriatric Medicine, School of Medicine, University of North Carolina at Chapel Hill
[#32] Abortion Data Privacy: Analysis of Third Party Tracking
Bolor-Erdene Jagdagdorj and Lujo Bauer, Carnegie Mellon University
[#33] Fixing FERPA: A Survey of Current Student Directory Sharing Practices at U.S. Universities
Sarah Radway, Katherine Quintanilla, and Daniel Votipka, Tufts University
[#34] Privacy Perceptions About Health and Non-Health Mobile Apps
Alexander Thomas, UC Berkeley; Noura Abdi, Liverpool Hope University; Julia Bernd, International Computer Science Institute
[#35] Examining User Perceptions of Stablecoins: Understandings and Risks
Yongqi Guan, University of Macau, Macau, China; Yaman Yu and Tanusree Sharma, University of Illinois at Urbana-Champaign, Champaign, USA; Kaihua Qin, Imperial College London, United Kingdom; Yang Wang, University of Illinois at Urbana-Champaign, Champaign, USA; Ye Wang, University of Macau, Macau, China
Published Work
Posters of usable security papers published recently at other venues.
[#11] Information Security Culture: A Look Ahead at Measurement Methods
Samantha Phillips, Bradley Brummel, Sal Aurigemma, and Tyler Moore, University of Tulsa
[#36] Privacy Rarely Considered: Exploring Considerations in the Adoption of Third-Party Services by Websites
Christine Utz and Sabrina Amft, CISPA Helmholtz Center for Information Security; Martin Degeling, Ruhr University Bochum; Thorsten Holz and Sascha Fahl, CISPA Helmholtz Center for Information Security; Florian Schaub, University of Michigan School of Information
[#37] "... It’s very unacceptable for someone to peek into your privacy." Chronicles of Shoulder Surfing: Exploring Deep into a Longitudinal Diary Study
Habiba Farzand, University of Glasgow; Karola Marky, Ruhr-University Bochum; Mohamed Khamis, University of Glasgow
[#38] SoK: Social Cybersecurity
Yuxi Wu and W. Keith Edwards, Georgia Institute of Technology; Sauvik Das, Carnegie Mellon University
[#39] Interactive Privacy Management: Towards Enhancing Privacy Awareness and Control in Internet of Things
Bayan Al Muhander, Cardiff University, UK; Jason Wiese, University of Utah, US; Omer Rana and Charith Perera, Cardiff University, UK
[#40] Exploring User Reactions and Mental Models Towards Perceptual Manipulation Attacks in Mixed Reality
Kaiming Cheng, Jeffery Fu Tian, Tadayoshi Kohno, and Franziska Roesner, University of Washington
[#41] Emotion AI at Work: Implications for Workplace Surveillance, Emotional Labor, and Emotional Privacy
Kat Roemmich, Florian Schaub, and Nazanin Andalibi, University of Michigan
[#42] Contact Tracing Demystified: Safeguarding Privacy in Uncertain Times
Habiba Farzand and Florian Mathis, University of Glasgow; Karola Marky, Ruhr-University Bochum; Mohamed Khamis, University of Glasgow
[#43] “Revoked just now!” Users’ Behaviors toward Fitness-Data Sharing with Third-Party Applications
Noé Zufferey, Kavous Salehzadeh Niksirat, Mathias Humbert, and Kévin Huguenin, University of Lausanne
[#44] A Psychometric Scale to Measure Individuals’ Value of Other People’s Privacy (VOPP)
Rakibul Hasan, Arizona State University; Rebecca Weil, Rudolf Siegel, and Katharina Krombholz, CISPA Helmholtz Center for Information Security
[#45] Impact and User Perception of Sandwich Attacks in the DeFi Ecosystem
Ye Wang, University of Macau; Patrick Zuest, ETH Zurich; Yaxing Yao, University of Maryland, Baltimore County; Zhicong Lu, City University of Hong Kong; Roger Wattenhofer, ETH Zurich
[#46] Different Researchers, Different Results? Analyzing the Influence of Researcher Experience and Data Type During Qualitative Analysis of an Interview and Survey Study on Security Advice
Anna-Marie Ortloff, University of Bonn; Matthias Fassl and Alexander Ponticello, CISPA Helmholtz Center for Information Security, Saarland University; Florin Martius and Anne Mertens, University of Bonn; Katharina Krombholz, CISPA Helmholtz Center for Information Security, Saarland University; Matthew Smith, University of Bonn, Fraunhofer FKIE
[#47] "How technical do you get? I'm an English teacher": Teaching and Learning Cybersecurity and AI Ethics in High School
Zachary Kilhoffer, Zhixuan Zhou, Firmiana Wang, Fahad Tamton, and Yun Huang, University of Illinois Urbana-Champaign; Pilyoung Kim, University of Denver; Tom Yeh, University of Colorado Boulder; Yang Wang, University of Illinois Urbana-Champaign
[#48] Attitudes towards Client-Side Scanning for CSAM, Terrorism, Drug Trafficking, Drug Use and Tax Evasion in Germany
Lisa Geierhaas, University of Bonn; Fabian Otto, OmniQuest; Maximilian Häring, University of Bonn; Matthew Smith, University of Bonn, Fraunhofer FKIE
[#49] “Security is not my field, I’m a stats guy”: A Qualitative Root Cause Analysis of Barriers to Adversarial Machine Learning Defenses in Industry
Jaron Mink, University of Illinois at Urbana-Champaign; Harjot Kaur, Leibniz University Hannover; Juliane Schmüser and Sascha Fahl, CISPA Helmholtz Center for Information Security; Yasemin Acar, The George Washington University, University Paderborn