Despite many advances, security and privacy often remain too complex for individuals or enterprises to manage effectively or to use conveniently. Security is hard for users, administrators, and developers to understand, making it all too easy to use, configure, or operate systems in ways that are inadvertently insecure. Moreover, security and privacy technologies originally were developed in a context in which system administrators had primary responsibility for security and privacy protections and in which the users tended to be sophisticated. Today, the user base is much wider--including the vast majority of employees in many organizations and a large fraction of households--but the basic models for security and privacy are essentially unchanged.
Security features can be clumsy and awkward to use and can present significant obstacles to getting work done. As a result, cybersecurity measures are all too often disabled or bypassed by the users they are intended to protect. Similarly, when security gets in the way of functionality, designers and administrators deemphasize it.
The result is that end users often engage in actions, knowingly or unknowingly, that compromise the security of computer systems or contribute to the unwanted release of personal or other confidential information. Toward Better Usability, Security, and Privacy of Information Technology discusses computer system security and privacy, their relationship to usability, and research at their intersection.
Table of Contents
|1 Overview of Security, Privacy, and Usability||1-6|
|2 Framing the Security and Usability Challenges||7-10|
|3 Current Research at the Intersection of Usability, Security, and Privacy||11-23|
|4 Some Potential Research Directions for Furthering the Usability, Security, and Privacy of Computer Systems||24-36|
|5 Overarching Challenges to Advancing Research in Usability, Security, and Privacy||37-40|
|Appendix A: Workshop Agenda||43-45|
|Appendix B: Workshop Participants||46-49|
|Appendix C: Biosketches of Steering Committee Members and Staff||50-56|
The National Academies Press and the Transportation Research Board have partnered with Copyright Clearance Center to offer a variety of options for reusing our content. You may request permission to:
For most Academic and Educational uses no royalties will be charged although you are required to obtain a license and comply with the license terms and conditions.
For information on how to request permission to translate our work and for any other rights related query please click here.
For questions about using the Copyright.com service, please contact:
Copyright Clearance Center
22 Rosewood Drive
Danvers, MA 01923
Tel (toll free): 855/239-3415 (select option 1)
Loading stats for Toward Better Usability, Security, and Privacy of Information Technology: Report of a Workshop...