Jun 25 2017
Conclusion and References
Many online security problems stem from insecure and malicious websites. Website certificates and browser indicators were created to address these issues, but most users have very little understanding of how they work. We propose going beyond superficial approaches, and using interactive visualizations to help users develop mental models. To our knowledge this approach has not yet been explored, and has potential to significantly support users ability to make safe online decisions.
REFERENCES
1. Asgharpour, F., Liu, D., & Camp, L. J. (2007). Mental Models of Security Risks. Financial Cryptography and Data Security Lecture Notes in CompScience, 367-377.
2. Bravo-Lillo, C., Cranor, L. F., Downs, J., & Komanduri, S. (2011). Bridging the Gap in Computer Security Warnings: A Mental Model Approach. IEEE Secur. Privacy Mag., 9(2), 18-26.
3. Jackson, C., Simon, D. R., Tan, D. S., & Barth, A. (2007). An evaluation of Extended Validation and Picture-in-Picture Phishing Attacks. Financial Crypto.
4. Sinreich, D., Gopher, D., Ben-Barak, S., Marmor, Y., & Lahat, R. (2005). Mental models as a practical tool in the engineer’s toolbox. Intern. Jour. of Production Research, 43(14), 2977–2996.
5. Sobey, J., Biddle, R., Oorschot, P. C., & Patrick, A. S. (2008). Exploring User Reactions to New Browser Cues for Extended Validation Certificates. Computer Security – ESORICS