Please enable JavaScript.
Coggle requires JavaScript to display documents.
USABILITY ASPECTS OF SECURITY (Security ought to be (Understandable (We…
USABILITY ASPECTS OF SECURITY
Security ought to be
Understandable
We should be able to determine and select the protection we require
The technology should not make unrealistic assumptions about our prior knowledge
Locatable
We need to be able to find the features we need
If we have to spend too long looking, we may give up and remain unprotected
Visible
We ought to be able to determine whether protection is being applied and to what level
Appropriate status indicators and warnings will help to remind us if safeguards are not enabled
Convenient
Need to maintain balance - security should not be so visible that it becomes intrusive
We are likely to disable features that become too much of an impediment to legitimate use
Usability Barriers
Problems can affect end users and system administrators
E.g. survey of 160 system administrators*
Included questions about technical barriers to using security tools
More than half faced problems during the installation of a security analysis tool
71% had subsequent difficulties when attempting to configure one
Interfacing with the user
Syntactic / Semantic Model
Syntactic
varied, device-dependent
acquired by rote (mechanical repetition)
easily forgotten
Semantic
structured, device-independent
acquired by meaningful learning
stable in memory
