Usable security
 | This article, Usable security, has recently been created via the Articles for creation process. Please check to see if the reviewer has accidentally left this template after accepting the draft and take appropriate action as necessary.
Reviewer tools: Inform author |
| This article, Usable security, has recently been created via the Articles for creation process. Please check to see if the reviewer has accidentally left this template after accepting the draft and take appropriate action as necessary.
Reviewer tools: Inform author |
Usable security is a subfield of computer science, human-computer interaction and cybersecurity concerned with the usability of cybersecurity systems[1]. In particular, usable security focuses on ensuring that security systems are accessible and understandable to human users. This differs from the software engineering method of secure by design by placing greater focus on the human aspects of cybersecurity rather than the technical. Usable security also sits opposite the idea of security through obscurity by instead working to ensure that users are aware of the security implications of their decisions[2][3].
Common Goals
Much of the research in the field of usable security focuses on improving human-related aspects of cybersecurity[4], notably:
- Improving user understanding of good security practices
- Minimising the friction of implementing security practices in user workflows
- Strengthening organisational resilience to security threats stemming from user behaviour
Scientific Conferences
- EuroUSEC: European Symposium on Usable Security
- HAS: International Conference on Human Aspects of Information Security, Privacy, and Trust
- IFIP World Conference on Information Security Education
- STAST: International Workshop on Socio-Technical Aspects in Security
- TrustBus: International Conference on Trust and Privacy in Digital Business
- USEC: Usable Security and Privacy Symposium
See also
- User experience design
- Information design
- Information architecture
- Secure by default
- Secure by design
- Security through obscurity
- Software Security Assurance
References
- ^ Garfinkel, Simson; Lipford, Heather Richter (2014), "Introduction", Usable Security, Cham: Springer International Publishing, pp. 1–11, doi:10.1007/978-3-031-02343-9_1, ISBN 978-3-031-01215-0, retrieved 2022-12-01
- ^ Renaud, Karen; Volkamer, Melanie; Renkema-Padmos, Arne (2014), De Cristofaro, Emiliano; Murdoch, Steven J. (eds.), "Why Doesn't Jane Protect Her Privacy?", Privacy Enhancing Technologies, vol. 8555, Cham: Springer International Publishing, pp. 244–262, doi:10.1007/978-3-319-08506-7_13, ISBN 978-3-319-08505-0, retrieved 2022-12-01
- ^ Yee, Ka-Ping (2004). "Aligning security and usability". IEEE Security & Privacy. 2 (5): 48–55. doi:10.1109/MSP.2004.64. ISSN 1558-4046.
- ^ "Security and usability: you CAN have it all!". www.ncsc.gov.uk. Retrieved 2022-12-01.