Users' conceptions of web security: A comparative study

Batya Friedman, David Hurley, Daniel C. Howe, Edward Felten, Helen Nissenbaum

Research output: Contribution to conferencePaperpeer-review

82 Scopus citations

Abstract

This study characterizes users' conceptions of web security. Seventy-two individuals, 24 each from a rural community in Maine, a suburban professional community in New Jersey, and a high-technology community in California, participated in an extensive (2-hour) semi-structured interview (including a drawing task) about Web security. The results show that many users across the three diverse communities mistakenly evaluated whether a connection is secure or not secure. Empirically-derived typologies are provided for (1) conceptions of security based on users' verbal reasoning, (2) the types of evidence users depend upon in evaluating whether a connection is secure, and (3) conceptions of security as portrayed in users' drawings. Design implications are discussed.

Original languageEnglish (US)
Pages746-747
Number of pages2
StatePublished - 2002
EventConference on Human Factors in Computing Systems - Minneapolis, MN, United States
Duration: Apr 20 2002Apr 25 2002

Other

OtherConference on Human Factors in Computing Systems
CountryUnited States
CityMinneapolis, MN
Period4/20/024/25/02

All Science Journal Classification (ASJC) codes

  • Software
  • Human-Computer Interaction
  • Computer Graphics and Computer-Aided Design

Keywords

  • Security
  • User conceptions
  • User differences
  • User models
  • Value-sensitive design
  • Web models
  • Web security
  • WWW

Cite this