abstract

Data type based security alert dialogs

Authors:

Max-Emanuel Maurer,

Alexander De Luca,

Heinrich HussmannAuthors Info & Claims

CHI EA '11: CHI '11 Extended Abstracts on Human Factors in Computing Systems

Pages 2359 - 2364

https://doi.org/10.1145/1979742.1979903

Published: 07 May 2011 Publication History

Get Access

Abstract

Making users aware of insecure situations and behavior while browsing the Internet is a highly discussed and still difficult task. Both, passive and active warnings have their own specific disadvantages. While active warnings interrupt the current task and annoy the user, passive approaches often fail since they go unnoticed. In this work, we present first results of a concept displaying data type based alert dialogs whenever a user enters critical information into an online form. Such contextual dialogs appear right in the users' field of view representing a hybrid approach between active and passive warnings. An initial user study was conducted that showed a significant improvement of security awareness by participants that used the tool.

References

[1]

Amer T.S., Maris J.B. Signal words and signal icons in application control and information technology exception messages--hazard matching and habituation effects. In Journal of Information Systems, 21, 2006.

Google Scholar

[2]

Close T. Web security experience, indicators and trust: scope and use cases. W3C Working Group Note. 2008.

Google Scholar

[3]

Dhamija R., Tygar J.D., Hearst M. Why phishing works. In Proc. CHI 2006. Montréal, Québec, Canada.

Digital Library

Google Scholar

[4]

Egelman S., Cranor L.F., und Hong J. "You've been warned": an empirical study of the effectiveness of web browser phishing warnings. In Proc. CHI 2008. Florence, Italy.

Digital Library

Google Scholar

[5]

Miller R.C., Wu M. Fighting phishing at the user interface. In Security and Usability: Designing Secure Systems That People Can Use, (2005).

Google Scholar

[6]

Sunshine J., Egelman S., Almuhimedi H., Atri N., und Cranor L.F., "Crying Wolf": An empirical study of SSL warning effectiveness. In Proc. Usenix 2008.

Digital Library

Google Scholar

[7]

Whitten A., Tygar J.D. Why johnny can't encrypt: A usability evaluation of PGP 5.0. In Proc. Usenix 1999.

Digital Library

Google Scholar

[8]

Wu M., Miller R.C., Garfinkel S.L. Do security toolbars actually prevent phishing attacks? In Proc. CHI 2006. Montréal, Québec, Canada.

Digital Library

Google Scholar

Cited By

View all

Pieterse HGelderblom H(2018)Guidelines for Error Message DesignInternational Journal of Technology and Human Interaction10.4018/IJTHI.201801010514:1(80-98)Online publication date: 1-Jan-2018
https://dl.acm.org/doi/10.4018/IJTHI.2018010105
Canova GVolkamer MWeiler SAhn GYung MLi N(2014)POSTERProceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security10.1145/2660267.2662387(1418-1420)Online publication date: 3-Nov-2014
https://dl.acm.org/doi/10.1145/2660267.2662387
Harbach MFahl SSmith M(2014)Who's Afraid of Which Bad Wolf? A Survey of IT Security Risk AwarenessProceedings of the 2014 IEEE 27th Computer Security Foundations Symposium10.1109/CSF.2014.15(97-110)Online publication date: 19-Jul-2014
https://dl.acm.org/doi/10.1109/CSF.2014.15
Show More Cited By

Index Terms

Data type based security alert dialogs
1. Human-centered computing
  1. Human computer interaction (HCI)

Recommendations

Using data type based security alert dialogs to raise online security awareness
SOUPS '11: Proceedings of the Seventh Symposium on Usable Privacy and Security

When browsing the Internet, users are likely to be exposed to security and privacy threats -- like fraudulent websites. Automatic browser mechanisms can protect them only to some extent. In other situations it is still important to raise the users' ...
Impact of comprehensive information security awareness and cognitive characteristics on security incident management – an empirical study
Abstract
Organizations deploy a team of dedicated security professionals and spend significant resources safeguarding their digital assets. Despite best efforts, security incidents are on the rise and remain a key challenge. The literature has ...
E-commerce security threats: awareness, trust and practice

Electronic commerce (e-commerce) has always been accompanied by security concerns. Despite numerous studies in the areas of security and trust, to date there is a dearth of research that addresses the impact of security trust and security awareness on ...

Comments

Information & Contributors

Information

Published In

CHI EA '11: CHI '11 Extended Abstracts on Human Factors in Computing Systems

May 2011

2554 pages

ISBN:9781450302685

DOI:10.1145/1979742

General Chair:
Desney Tan
Microsoft Research
,
Program Chairs:
Bo Begole
PARC
,
Wendy A. Kellogg
IBM Research

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 07 May 2011

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Abstract

Conference

CHI '11

Sponsor:

SIGCHI

CHI '11: CHI Conference on Human Factors in Computing Systems

May 7 - 12, 2011

BC, Vancouver, Canada

Acceptance Rates

Overall Acceptance Rate 6,164 of 23,696 submissions, 26%

Upcoming Conference

CHI 2025

Sponsor:
sigchi

ACM CHI Conference on Human Factors in Computing Systems

April 26 - May 1, 2025

Yokohama , Japan

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

6
Total Citations
View Citations
202
Total Downloads

Downloads (Last 12 months)1
Downloads (Last 6 weeks)0

Reflects downloads up to 28 Feb 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Pieterse HGelderblom H(2018)Guidelines for Error Message DesignInternational Journal of Technology and Human Interaction10.4018/IJTHI.201801010514:1(80-98)Online publication date: 1-Jan-2018
https://dl.acm.org/doi/10.4018/IJTHI.2018010105
Canova GVolkamer MWeiler SAhn GYung MLi N(2014)POSTERProceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security10.1145/2660267.2662387(1418-1420)Online publication date: 3-Nov-2014
https://dl.acm.org/doi/10.1145/2660267.2662387
Harbach MFahl SSmith M(2014)Who's Afraid of Which Bad Wolf? A Survey of IT Security Risk AwarenessProceedings of the 2014 IEEE 27th Computer Security Foundations Symposium10.1109/CSF.2014.15(97-110)Online publication date: 19-Jul-2014
https://dl.acm.org/doi/10.1109/CSF.2014.15
Mirnig ATroesterer SBeck ETscheligi M(2014)To Trust or Not to TrustProceedings of the 5th IFIP WG 13.2 International Conference on Human-Centered Software Engineering - Volume 874210.1007/978-3-662-44811-3_10(164-181)Online publication date: 16-Sep-2014
https://dl.acm.org/doi/10.1007/978-3-662-44811-3_10
Harbach MFahl SYakovleva PSmith M(2013)Sorry, I Don’t Get It: An Analysis of Warning Message TextsFinancial Cryptography and Data Security10.1007/978-3-642-41320-9_7(94-111)Online publication date: 2013
https://doi.org/10.1007/978-3-642-41320-9_7
Maurer MDe Luca AKempe SCranor L(2011)Using data type based security alert dialogs to raise online security awarenessProceedings of the Seventh Symposium on Usable Privacy and Security10.1145/2078827.2078830(1-13)Online publication date: 20-Jul-2011
https://dl.acm.org/doi/10.1145/2078827.2078830

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Abstract

References

Cited By

Index Terms

Recommendations

Using data type based security alert dialogs to raise online security awareness

Impact of comprehensive information security awareness and cognitive characteristics on security incident management – an empirical study

E-commerce security threats: awareness, trust and practice

Comments

Information

Published In

Sponsors

Publisher

Publication History

Permissions

Check for updates

Author Tags

Qualifiers

Conference

Acceptance Rates

Upcoming Conference

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

Login options

Full Access

View options

PDF

eReader

Share

Share this Publication link

Share on social media

Affiliations