Quantcast
Channel: Publications of the Laboratory for Education and Research in Secure Systems Engineering (LERSSE)
Browsing all 28 articles
Browse latest View live

Usability Study of Windows Vista’s Firewall

Windows Vista is shipped with a built-in personal firewall. The firewall has lots of new features over its predecessor, XP’s firewall. But, previous studies showed that Vista’s firewall have a set of...

View Article



Usability of Windows Vista Firewall: A Laboratory User Study

In this project we conducted a user study of Microsoft Windows Vista Firewall: a lab study followed by a questionnaire to evaluate the usability of Vista’s personal firewall. Our results show that the...

View Article

A Usability Analysis of Microsoft Windows Vista’s Firewall

The usability of personal firewalls has not received a significant amount of attention in the literature. However, it is essential that these firewalls - which are used by the lay end-user to protect...

View Article

Security Practitioners in Context: Their Activities and Interactions with...

This study investigates the context of interactions of IT security practitioners, based on a qualitative analysis of 30 interviews and participatory observation. We identify nine different activities...

View Article

Usability Meets Access Control: Challenges and Research Opportunities

This panel discusses specific challenges in the usability of access control technologies and new opportunities for research. The questions vary from “Why nobody, even experts, uses access control lists...

View Article


Revealing Hidden Context: Improving Mental Models of Personal Firewall Users

The Windows Vista personal firewall provides its diverse users with a basic interface that hides many operational details. However, concealing the impact of network context on the security state of...

View Article

Revealing Hidden Context: Improving Mental Models of Personal Firewall Users

The Windows Vista personal firewall provides its diverse users with a basic interface that hides many operational details. However, concealing the impact of network context on the security state of the...

View Article

User Centered Design of ITSM Tools

IT Security Management (ITSM) requires collaboration between diverse stakeholders, has an environment of numerous technological and business specializations (is complex), has many issues that need to...

View Article


Revealing Hidden Context: Improving Users' Mental Models of Personal Firewalls

Windows Vista’s personal firewall provides its diverse users with a basic interface that hides many operational details. However, our study of this interface revealed that concealing the impact of...

View Article


A Multi-method Approach for User-centered Design of Identity Management Systems

Identity management (IdM) comprises the processes and infrastructure for the creation, maintenance, and use of digital identities. This includes designating who has access to resources, who grants that...

View Article

A Case Study of Enterprise Identity Management System Adoption in an...

This case study describes the adoption of an enterprise identity management(IdM) system in an insurance organization. We describe the state of the organization before deploying the IdM system, and...

View Article

Towards Developing Usability Heuristics for Evaluation of IT Security...

Evaluating the usability of specific information technology (IT) security tools is challenging. For example, laboratory experiments can have little validity due to the complexity of real-world security...

View Article

Preparation, detection, and analysis: the diagnostic work of IT security...

Purpose — The purpose of this study is to examine security incident response practices of IT security practitioners as a diagnostic work process, including the preparation phase, detection, and...

View Article


Investigating an Appropriate Design for Personal Firewalls

Personal firewalls are an important aspect of security for home computer users, but little attention has been given to their usability. We conducted semi-structured interviews to understand...

View Article

Investigating User Account Control Practices

Non-administrator user accounts and the user account control (UAC) approach of Windows Vista are two practical solutions to limit the damage of malware infection. UAC in Windows Vista supports usage of...

View Article


Do Windows Users Follow the Principle of Least Privilege? Investigating User...

The principle of least privilege requires that users and their programs be granted the most restrictive set of privileges possible to perform required tasks in order to limit the damages caused by...

View Article

"I did it because I trusted you": Challenges with the Study Environment...

We recently replicated and extended a 2009 study that investigated the effectiveness of SSL warnings. Our experimental design aimed to mitigate some of the limitations of that prior study, including...

View Article


Expectations, Perceptions, and Misconceptions of Personal Firewalls

In this research, our goal is to better understand users' knowledge, expectations, perceptions, and misconceptions of personal firewalls. We conducted interviews with 30 participants and analyzed the...

View Article

The Challenges of Understanding Users’ Security-related Knowledge, Behaviour,...

In order to improve current security solutions or devise novel ones, it is important to understand users' knowledge, behaviour, motivations and challenges in using a security solution. However,...

View Article

Challenges in evaluating complex IT security management systems

Performing ecologically valid user studies for IT security management (ITSM) systems is challenging. The users of these systems are security professionals who are difficult to recruit for interviews,...

View Article
Browsing all 28 articles
Browse latest View live




Latest Images