Slashdot Mirror

← Back to Stories (view on slashdot.org)

Secure Interaction Design

Posted by timothy on from the touching-the-right-buttons dept.

Pingster writes "Next week, ICICS 2002 will take place in Singapore. Out of 40 papers at the conference, there will be just one paper that looks at human factors. Though many people know that usability problems can render even the strongest security useless, the security community has only recently started paying attention to usability issues. More serious thinking about usability and security is desperately needed. The paper proposes ten interaction design principles. Maybe you'll find them obvious; maybe you'll disagree with them entirely. Great! Let's have a discussion."

5 of 120 comments (clear)

  1. Just use the big words... by isaacwith2as · · Score: 5, Funny

    and other confusing concepts and they'll quickly go into Dummy mode and do whatever you tell them to. For this reason we should make it all more complex, so that those who understand will have an easier time controlling those who don't.

    --
    Give a man a fire he'll be warm for a night. Light a man on fire and he'll be warm for the rest of his life.
  2. My top concern by CySurflex · · Score: 5, Funny

    I already communicated to my sysadmin that my top security usability concern is that the post-it note with my password on my monitor peels off after about two months. We need better adhesives on our post-it notes.

  3. Re:Security vs. Usability by Anonymous Coward · · Score: 1, Funny

    > (This might not be very funny, but not everyone can be a good humorist)
    > Save a tree. Eat a beaver

    Obviously not: you failed twice.

  4. Necessary but not sufficient for security by El · · Score: 5, Funny

    The seem to have forgotten at least one principle: The user must NOT be an idiot.

    --

    "Freedom means freedom for everybody" -- Dick Cheney

  5. Re:Outlook exploits have been doing this for years by Bruce+Losis · · Score: 2, Funny

    Is this like clicking on that attachment that says "I_love_you.vbs" in Outlook? Or should the computer produce some sort of audible warning on mouse-over?

    In many cases I'd say it would have to involve a mouse mod that gives a 60kV shock, rather than just a beep.

    --
    Don't believe the nonsense, unless you hear it from me directly.