Lecture Slides
See attached file
Materials
Reading for the lecture:
- Reeder, R., Kowalczyk, E.C. and Shostack, A., 2011, July. Helping engineers design NEAT security warnings. In Proceedings of the Symposium On Usable Privacy and Security (SOUPS), Pittsburgh, PA.
- Herley, C., 2009, September. So long, and no thanks for the externalities: the rational rejection of security advice by users. In Proceedings of the 2009 workshop on New security paradigms workshop (pp. 133-144).
- Redmiles, E.M., Warford, N., Jayanti, A., Koneru, A., Kross, S., Morales, M., Stevens, R. and Mazurek, M.L., 2020. A comprehensive quality evaluation of security and privacy advice on the web. In 29th USENIX Security Symposium (USENIX Security 20) (pp. 89-108).
Further Reading:
- "... No one Can Hack My Mind": Comparing Expert and Non-Expert Security Practices by Ion, Iulia, Rob Reeder, and Sunny Consolvo
- Introducing the cybersurvival task: assessing and addressing staff beliefs about effective cyber protection by Nicholson, James, Lynne Coventry, and Pam Briggs
Exercises / Activities
- (Blog) Geeng, C., Harris, M., Redmiles, E. and Roesner, F., 2022. "Like Lesbians Walking the Perimeter": Experiences of US LGBTQ+ Folks With Online Security, Safety, and Privacy Advice. In 31st USENIX Security Symposium (USENIX Security 22) (pp. 305-322).
- (Blog) NCSC - Social Media: how to use it safely