It's too complicated, so i turned it off!

Raja, Fahimeh; Hawkey, Kirstie; Jaferian, Pooya; Beznosov, Konstantin; Booth, Kellogg S.

doi:10.1145/1866898.1866907

Cited by 20 publications

(5 citation statements)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In planning the data analysis, we followed the guidelines of qualitative analysis for processing data from interviews. 54 Moreover, we looked at existing reports based on interviews in the cybersecurity or software engineering domain, like earlier studies 49,52 to validate our approach.…”

Section: Discussionmentioning

confidence: 99%

“…A good example is a set of semistructured interviews focused on personal firewalls. 52 Notably, the interviews were conducted with a wide range of participants with different knowledge about security to explore the common expectations, perceptions, and misconceptions. Interviews have also been utilized to validate the cybersecurity visualization model, which is itself also based on a qualitative approach.…”

Section: Interviews and Surveys In Software Engineering And Digital F...mentioning

confidence: 99%

“…The cybersecurity domain also tends to utilize interview‐based research. A good example is a set of semistructured interviews focused on personal firewalls 52 . Notably, the interviews were conducted with a wide range of participants with different knowledge about security to explore the common expectations, perceptions, and misconceptions.…”

Section: Related Workmentioning

confidence: 99%

See 2 more Smart Citations

Forensic experts' view of forensic‐ready software systems: A qualitative study

Daubner

Bühnová

Pitner

2023

J Software Evolu Process

View full text Add to dashboard Cite

Software engineers widely acknowledge the inclusion of security requirements in the early stages of the development process. However, the need to prepare the software for the failure of the implemented security controls and subsequent investigation of the incident is often not discussed. Forensic‐ready software systems represent an evolution of secure systems being designed for the eventual digital forensic investigation. However, their exact properties remain largely unexplored, beyond preliminary high‐level conceptualizations of requirements and capabilities. Further obstacles hindering the adoption of forensic‐ready software systems are the different priorities and goals of involved parties and a gap in the digital forensics expertise of software engineers. In this paper, we conduct an empirical qualitative study identifying the problems and needs of forensic readiness while framing the notion of an ideal forensic‐ready software system and how it should treat potential evidence. To this end, we conducted semisupervised interviews with digital forensics experts on their idea, experience, and suggestions. The results provide insights into the needs of the experts to facilitate the definition of correct requirements towards forensic‐ready software systems to support the anticipated investigations properly.

show abstract

Section: Discussionmentioning

confidence: 99%

Section: Interviews and Surveys In Software Engineering And Digital F...mentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Forensic experts' view of forensic‐ready software systems: A qualitative study

Daubner

Bühnová

Pitner

2023

J Software Evolu Process

View full text Add to dashboard Cite

show abstract

“…Many a time, users are overwhelmed with the restrictions imposed on them due to security features, consequently resorting to either turning it off or bypassing it, resulting in lessening the security 8,9 . Process improvement, productivity, and efficiency improvement also result from increased usability.…”

Section: Usable Securitymentioning

confidence: 99%

Game theoretical analysis of usable security and privacy

Justine¹,

Prasad²,

Thomas³

2018

Security and Privacy

View full text Add to dashboard Cite

Security, privacy, and usability are among the most important concerns in system and application design. Enhanced security, privacy, and usability features in a product definitely lead to remarkable total customer experience. It is commonly seen that developers in their attempt to create usable software, fail to meet the security needs of users, resulting in software security flaws. Security flaws in software may in turn cause inadvertent errors leading to further usability issues. Thus this situation creates a vicious cycle. Hence the need for better usable security and privacy comes into picture. This novel research paper discusses an example system in a hand‐held device ecosystem with focus on banking security, to illustrate the interplay of usability, security, and privacy. Game theory is used to model the situation and analyze the possibility of finding equilibrium for these competing goals. Both coalitional and non‐cooperative game models for analyzing usable security and privacy are proposed and analyzed. This game theoretical analysis of usable security proves that it is possible to optimize usability, security, and privacy and helps to break the popular misconception that it is not possible for these three features to be simultaneously available to the end users.

show abstract

“…This is a typical dialog structure, similar to others that might signal the acceptance of terms and conditions, granting permission for a software download, or agreeing to mobile applications accessing information from a mobile device. We know that users habituate to such messages over time (i.e., the more frequently they see the message, the less attention they give them Böhme and Köpsell, 2010; Raja et al, 2010). Further, we know that dialog boxes often interrupt the user in achieving his or her primary goal.…”

Section: Introductionmentioning

confidence: 99%

Personality and Social Framing in Privacy Decision-Making: A Study on Cookie Acceptance

et al. 2016

View full text Add to dashboard Cite

Despite their best intentions, people struggle with the realities of privacy protection and will often sacrifice privacy for convenience in their online activities. Individuals show systematic, personality dependent differences in their privacy decision making, which makes it interesting for those who seek to design ‘nudges’ designed to manipulate privacy behaviors. We explore such effects in a cookie decision task. Two hundred and ninety participants were given an incidental website review task that masked the true aim of the study. At the task outset, they were asked whether they wanted to accept a cookie in a message that either contained a social framing ‘nudge’ (they were told that either a majority or a minority of users like themselves had accepted the cookie) or contained no information about social norms (control). At the end of the task, participants were asked to complete a range of personality assessments (impulsivity, risk-taking, willingness to self-disclose and sociability). We found social framing to be an effective behavioral nudge, reducing cookie acceptance in the minority social norm condition. Further, we found personality effects in that those scoring highly on risk-taking and impulsivity were significantly more likely to accept the cookie. Finally, we found that the application of a social nudge could attenuate the personality effects of impulsivity and risk-taking. We explore the implications for those working in the privacy-by-design space.

show abstract

It's too complicated, so i turned it off!

Cited by 20 publications

References 20 publications

Forensic experts' view of forensic‐ready software systems: A qualitative study

Forensic experts' view of forensic‐ready software systems: A qualitative study

Game theoretical analysis of usable security and privacy

Personality and Social Framing in Privacy Decision-Making: A Study on Cookie Acceptance

Contact Info

Product

Resources

About