Dodier-Lazaro, S;
Becker, I;
Krinke, J;
Sasse, MA;
(2017)
"No Good Reason to Remove Features": Expert Users Value Useful Apps over Secure Ones.
In: Tryfonas, T, (ed.)
HAS 2017: Human Aspects of Information Security, Privacy and Trust.
(pp. pp. 25-44).
Springer: Cham, Switzerland.
Preview |
Text
2017-vsd-hcii.pdf - Accepted Version Download (305kB) | Preview |
Abstract
Application sandboxes are an essential security mechanism to contain malware, but are seldom used on desktops. To understand why this is the case, we interviewed 13 expert users about app appropriation decisions they made on their desktop computers. We collected 201 statements about app appropriation decisions. Our value-sensitive empirical analysis of the interviews revealed that (a) security played a very minor role in app appropriation; (b) users valued plugins that support their productivity; (c) users may abandon apps that remove a feature – especially when a feature was blocked for security reasons. Our expert desktop users valued a stable user experience and flexibility, and are unwilling to sacrifice those for better security. We conclude that sandboxing – as currently implemented – is unlikely to be voluntarily adopted, especially by expert users. For sandboxing to become a desirable security mechanism, they must first accommodate plugins and features widely found in popular desktop apps.
| Type: | Proceedings paper |
|---|---|
| Title: | "No Good Reason to Remove Features": Expert Users Value Useful Apps over Secure Ones |
| Event: | International Conference on Human Aspects of Information Security, Privacy, and Trust (HAS 2017) |
| Location: | Vancouver |
| Dates: | 09 July 2017 - 14 July 2017 |
| ISBN-13: | 9783319584591 |
| Open access status: | An open access version is available from UCL Discovery |
| DOI: | 10.1007/978-3-319-58460-7_3 |
| Publisher version: | http://dx.doi.org/10.1007/978-3-319-58460-7_3 |
| Language: | English |
| Additional information: | This version is the author accepted manuscript. For information on re-use, please refer to the publisher’s terms and conditions. |
| Keywords: | Value-Sensitive Design, Security, Productive Security, Sandboxing, Apps, Appropriation |
| UCL classification: | UCL UCL > Provost and Vice Provost Offices UCL > Provost and Vice Provost Offices > UCL BEAMS UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science > Dept of Computer Science UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science > Dept of Security and Crime Science |
| URI: | https://discovery-pp.ucl.ac.uk/id/eprint/1563564 |
Archive Staff Only
 |
View Item |
