Heuristics and Models for Evaluating the Usability of Security Measures
| dc.contributor.author | Feth, Denis | |
| dc.contributor.author | Polst, Svenja | |
| dc.contributor.editor | Alt, Florian | |
| dc.contributor.editor | Bulling, Andreas | |
| dc.contributor.editor | Döring, Tanja | |
| dc.date.accessioned | 2019-08-22T04:36:34Z | |
| dc.date.available | 2019-08-22T04:36:34Z | |
| dc.date.issued | 2019 | |
| dc.description.abstract | Security mechanisms are nowadays part of almost every software. At the same time, they are typically sociotechnical and require involvement of end users to be effective. The usability of security measures is thus an essential factor. Despite this importance, this aspect often does not receive the necessary attention, for example due to short resources like time, budget, or usability experts. In the worst-case, users reject or circumvent even strong security measures and technically secure systems become insecure. To tackle the problem of unusable security measures, we developed a heuristics-based usability evaluation and optimization approach for security measures. In order to make heuristics applicable also for non-usability experts, we enrich them with information from a joint model for usability and security. In particular, this approach allows developers and administrators to perform usability evaluations and thus enables an early tailoring to the user, complementary to expert or user reviews. In this paper, we present our approach, including an initial set of heuristics, a joint model for usability and security and a set of mapping rules that combine heuristics and model. We evaluated the applicability of our approach, which we present in this paper. | en |
| dc.description.uri | https://dl.acm.org/authorize?N681252 | |
| dc.identifier.doi | 10.1145/3340764.3340789 | |
| dc.identifier.uri | https://dl.gi.de/handle/20.500.12116/24597 | |
| dc.language.iso | en | |
| dc.publisher | ACM | |
| dc.relation.ispartof | Mensch und Computer 2019 - Tagungsband | |
| dc.relation.ispartofseries | Mensch und Computer | |
| dc.subject | usable security | |
| dc.subject | quality model | |
| dc.subject | heuristic evaluation | |
| dc.subject | human-centered design | |
| dc.subject | evaluation | |
| dc.title | Heuristics and Models for Evaluating the Usability of Security Measures | en |
| dc.type | Text/Conference Paper | |
| gi.citation.publisherPlace | New York | |
| gi.conference.date | 8.-11. September 2019 | |
| gi.conference.location | Hamburg | |
| gi.conference.sessiontitle | MCI: Full Paper | |
| gi.document.quality | digidoc |