Narges Zare, Cori Faklaris, Sarah Tabassum, and Heather Richter Lipford, UNC Charlotte
Smishing (SMS phishing) is a growing cyber threat that exploits user trust in text messages. Many users struggle to distinguish between legitimate and fraudulent messages, increasing their risk. To address this problem, we researched and developed options for visual trust indicators that can be displayed to guide mobile phone users in judging messages. We evaluated the indicator options with 30 participants. Participants preferred intuitive, color-coded icons, especially when familiar and contextually clear. Non-verbal icons enabled low-effort recognition, while tooltips were valuable when they provided clear, actionable options like one-click reporting. Profile with shield icons and triangle road signs were most effective. Our findings highlight how visual indicators enhance user security and confidence, while also supporting more informed decision-making. We recommend accessible and customizable designs that align with user expectations. These insights have broader relevance for improving mobile messaging and securing IoT environments where compromised phones can trigger downstream risks.
Open Access Media
USENIX is committed to Open Access to the research presented at our events. Papers and proceedings are freely available to everyone once the event begins. Any video, audio, and/or slides that are posted after the event are also free and open to everyone. Support USENIX and our commitment to Open Access.
