Reference : The Framework of Security-Enhancing Friction: How UX Can Help Users Behave More Securely |
Scientific congresses, symposiums and conference proceedings : Paper published in a journal | |||
Engineering, computing & technology : Multidisciplinary, general & others | |||
Security, Reliability and Trust | |||
http://hdl.handle.net/10993/44327 | |||
The Framework of Security-Enhancing Friction: How UX Can Help Users Behave More Securely | |
English | |
Distler, Verena ![]() | |
Lenzini, Gabriele ![]() | |
Lallemand, Carine ![]() | |
Koenig, Vincent ![]() | |
26-Oct-2020 | |
New Security Paradigms Workshop | |
Yes | |
International | |
Virtual Conference | |
New Security Paradigms Workshop | |
October 26-29, 2020 | |
[en] Usable Security and Privacy ; Trust ; Friction Design ; User Experience | |
[en] A growing body of research in the usable privacy and security
community addresses the question of how to best influence user behavior to reduce risk-taking.We propose to address this challenge by integrating the concept of user experience (UX) into empirical usable privacy and security studies that attempt to change risktaking behavior. UX enables us to study the complex interplay between user-related, system-related and contextual factors and provides insights into the experiential aspects underlying behavior change, including negative experiences. We first compare and contrast existing security-enhancing interventions (e.g., nudges, warnings, fear appeals) through the lens of friction. We then build on these insights to argue that it can be desirable to design for moments of negative UX in security-critical situations. For this purpose, we introduce the novel concept of security-enhancing friction, friction that effectively reduces the occurrence of risk-taking behavior and ensures that the overall UX (after use) is not compromised. We illustrate how security-enhancing friction provides an actionable way to systematically integrate the concept of UX into empirical usable privacy and security studies for meeting both the objectives of secure behavior and of overall acceptable experience. | |
Researchers ; Professionals ; Students | |
http://hdl.handle.net/10993/44327 | |
FnR ; FNR10621687 > Sjouke Mauw > SPsquared > Security and Privacy for System Protection > 01/01/2017 > 30/06/2023 > 2016 |
File(s) associated to this reference | ||||||||||||||
Fulltext file(s):
| ||||||||||||||
All documents in ORBilu are protected by a user license.