Presentation is loading. Please wait.

Presentation is loading. Please wait.

Finding Solutions for Bringing Usability to Security Products Thesis author: Antti Leskelä Supervisor: Professor Jörg Ott.

Published byGertrude Matthews Modified over 9 years ago

Similar presentations

Presentation on theme: "Finding Solutions for Bringing Usability to Security Products Thesis author: Antti Leskelä Supervisor: Professor Jörg Ott."— Presentation transcript:

1 Finding Solutions for Bringing Usability to Security Products Thesis author: Antti Leskelä Supervisor: Professor Jörg Ott

2 Presentation outline Background Thesis objectives Thesis roadmap Quick overview to usability Usable security User study Conclusions

3 Background Bad usability is everyday life for people Usability is a major factor of competition nowadays The importance of usable security grows as network-related and computerised work becomes (/has become) more common Security business has been one of the last sectors fighting against usability demands The wrong assumption: ”The more usability, the less security”

4 Thesis objectives To study problems with usability in information security emphasising in human aspects and human-centered design To identify the different aspects of usable security and to create design principles based on the identification To find out how usability is perceived in general and how the users experience the user-friendliness of security products Expertise in security Expertise in usability Overlap area for usable security

5 Thesis roadmap CHAPTER 2 Security CHAPTER 2 Security CHAPTER 4 Usable security CHAPTER 4 Usable security CHAPTER 5 Method CHAPTER 5 Method CHAPTER 3 Usability CHAPTER 3 Usability CHAPTER 6 Results CHAPTER 6 Results User study

6 Overview to usability Usability refers to human-computer interface problems and user-friendliness. Usability can be seen as the ability of a system to be used easily and efficiently Takes into account emotions and affect Layered model of usability (next slide) combines together different definitions of usability Essential part of usability is paying attention to the user

7 Layered model of usability

8 Usable security 1/2 Usable security is a union of usability and security Usable security gives a two-dimensional possibility of designing user-friendlier security products Challenges in joining the user’s system image into the system to be designed Communication with the user and the designer happens only via the system image Need for user centered-design and design principles!!

9 Usable security 2/2 Zero impact Zero-click Visibility of actions Reversibility Completion User audit Override-ability No external burden Design principles for usable security*: * Based on Simson L. Garfinkel & Ka-Ping Yee

10 SUMI Software Usability Measurement Inventory Can be used to surveys and controlled studies Surveys measure the perceived usability of software systems already in use Controlled studies measure performance and identity, and analyse problems Used in the thesis to measure the perceived usability of security software User study

11 User study – Questionnaire + Web-based questionnaire for users of security software.

12 User study – Results 1/2

13 User study – Results 2/2 Participation was good However, results valid only for intermediate & expert users Number of novice users only 3,1 % Quantitative analysis: SUMI results gave fairly good level of perceived usability to security software Problem area: efficiency Can be seen as a lack of transparency of the system Qualitative analysis: Most of the responses were negative relating to the problems the participants had faced with their security software Configuring, instructions, laziness & lack of interest etc. General worry about the state of overall security awareness

14 Conclusions Design principles for usable security give a good starting point for secure interaction design Results of the user study indicate that users have problems with security software However it can be seen that security software are more usable than before There is still a lot to do in order to provide more usable security products We demand better usability!!!

15 THANKS!

Download ppt "Finding Solutions for Bringing Usability to Security Products Thesis author: Antti Leskelä Supervisor: Professor Jörg Ott."

Similar presentations

Conducting the Community Analysis. What is a Community Analysis?  Includes market research and broader analysis of community assets and challenges 

Conducting the Community Analysis. What is a Community Analysis?  Includes market research and broader analysis of community assets and challenges 
TECHNICAL VOCATIONAL EDUCATIONAL AND TRAINING COLLEGES AN INTRODUCTION TO THE IMPEMENTATION OF A COMPLIANT RISK MANAGEMENT PROCESS July 2014.

TECHNICAL VOCATIONAL EDUCATIONAL AND TRAINING COLLEGES AN INTRODUCTION TO THE IMPEMENTATION OF A COMPLIANT RISK MANAGEMENT PROCESS July 2014.
Chapter 7 Other Requirements Good Fast Cheap Pick any two. 1CS6359 -- John Cole.

Chapter 7 Other Requirements Good Fast Cheap Pick any two. 1CS John Cole.
Asper School of Business University of Manitoba Systems Analysis & Design Instructor: Bob Travica Determining systems requirements Updated: September 2014.

Asper School of Business University of Manitoba Systems Analysis & Design Instructor: Bob Travica Determining systems requirements Updated: September 2014.
REACH FOR POLYMERS EXPERT WORKSHOP BPF “REACH & CLP SEMINAR” WEDNESDAY, OCTOBER 19 th.

REACH FOR POLYMERS EXPERT WORKSHOP BPF “REACH & CLP SEMINAR” WEDNESDAY, OCTOBER 19 th.
Building Good Governance and Resilience in Small States

Building Good Governance and Resilience in Small States
! Copyright © Insight Test Services 2008 Top 10 Tips Preparing a business case/plan for investment in Test.

! Copyright © Insight Test Services 2008 Top 10 Tips Preparing a business case/plan for investment in Test.
Zero effort security for the home PC users? By Terje Risa.

Zero effort security for the home PC users? By Terje Risa.
Information and Communication Technology Research Initiative www.ictri.port.ac.uk Supporting the self management of obesity: The role of ICTs University.

Information and Communication Technology Research Initiative Supporting the self management of obesity: The role of ICTs University.
R R R CSE870: Advanced Software Engineering (Cheng): Intro to Software Engineering1 Advanced Software Engineering Dr. Cheng Overview of Software Engineering.

R R R CSE870: Advanced Software Engineering (Cheng): Intro to Software Engineering1 Advanced Software Engineering Dr. Cheng Overview of Software Engineering.
Slide 1 Requirements Wrap-up (Chapter 31 of requirements text) and Interaction Design: Introduction (Chapters 1 of Interaction Design text) CSSE 371 Software.

Slide 1 Requirements Wrap-up (Chapter 31 of requirements text) and Interaction Design: Introduction (Chapters 1 of Interaction Design text) CSSE 371 Software.
CSE491 Human-Computer Interaction Eileen Kraemer 8/28/07.

CSE491 Human-Computer Interaction Eileen Kraemer 8/28/07.
Ch 3 Usability page 1CS 368 Usability Models the authors compare three usability models and introduce their own “the extent to which a product can be used.

Ch 3 Usability page 1CS 368 Usability Models the authors compare three usability models and introduce their own “the extent to which a product can be used.
Everyday inclusive Web design: an activity perspective CS575 MADHAVI L NIDAMARTHY.

Everyday inclusive Web design: an activity perspective CS575 MADHAVI L NIDAMARTHY.
INTRODUCTION. Concepts HCI, CHI Usability User-centered Design (UCD) An approach to design (software, Web, other) that involves the user Interaction Design.

INTRODUCTION. Concepts HCI, CHI Usability User-centered Design (UCD) An approach to design (software, Web, other) that involves the user Interaction Design.
Portfolio Selection of IT Service Products – Case Study Antti Vikman 25.8.2009.

Portfolio Selection of IT Service Products – Case Study Antti Vikman
Regulation & Implementation of Mobile Internet Quality of Service: Role & Scope of Civil Society Organisations PRESENTATION BY: NEHA TOMAR, RESEARCH ASSOCIATE,

Regulation & Implementation of Mobile Internet Quality of Service: Role & Scope of Civil Society Organisations PRESENTATION BY: NEHA TOMAR, RESEARCH ASSOCIATE,
Evolution of Quality Concepts. Reading Paper Research Report Research Qs: 1.Whether TQM results in improving the financial performance of companies that.

Evolution of Quality Concepts. Reading Paper Research Report Research Qs: 1.Whether TQM results in improving the financial performance of companies that.
User Interface Design Chapter 11. Objectives  Understand several fundamental user interface (UI) design principles.  Understand the process of UI design.

User Interface Design Chapter 11. Objectives  Understand several fundamental user interface (UI) design principles.  Understand the process of UI design.
IMPACTing Steel Mills STEVE X BISHOP – SALES EXECUTIVE NEW PRODUCT ANNOUNCEMENT.

IMPACTing Steel Mills STEVE X BISHOP – SALES EXECUTIVE NEW PRODUCT ANNOUNCEMENT.

Similar presentations

Ads by Google