Can Jannie verify? Usability of display-equipped RFID tags for security purposes

Kobsa, Alfred; Nithyanand, Rishab; Tsudik, Gene; Uzun, Ersin

doi:10.3233/jcs-130470

Cited by 2 publications

(1 citation statement)

References 36 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…All these tasks require some form of human involvement, which represents the weakest link and determines overall security [1], [2], [3], [4], [5], [6], [7]. This motivates extensive usability studies to assess human ability to routinely complete security tasks that still provide an acceptable level of security.…”

Section: Introductionmentioning

confidence: 99%

An Unattended Study of Users Performing Security Critical Tasks Under Adversarial Noise

Kaczmarek

Kobsa²,

Sy³

et al. 2015

Proceedings 2015 Workshop on Usable Security

Self Cite

View full text Add to dashboard Cite

User errors while performing security-critical tasks can lead to undesirable or even disastrous consequences. One major factor influencing mistakes and failures is complexity of such tasks, which has been studied extensively in prior research. Another important issue which hardly received any attention is the impact of both accidental and intended distractions on users performing security-critical tasks. In particular, it is unclear whether, and to what extent, unexpected sensory cues (e.g., auditory or visual) can influence user behavior and/or trigger mistakes. Better understanding of the effects of intended distractions will help clarify their role in adversarial models. As part of the research effort described in this paper, we administered a range of naturally occurring -yet unexpectedsounds while study participants attempted to perform a securitycritical task. We found that, although these auditory cues lowered participants' failure rates, they had no discernable effect on their task completion times. To this end, we overview some relevant literature that explains these somewhat counter-intuitive findings.Conducting a thorough and meaningful study on user errors requires a large number of participants, since errors are typically infrequent and should not be instigated more than once per subject. To reduce the effort of running numerous subjects, we developed a novel experimental setup that was fully automated and unattended. We discuss our experience with this setup and highlight the pros and cons of generalizing its usage.

show abstract