Usability and security of human-interactive security protocolsReportar como inadecuado




Usability and security of human-interactive security protocols - Descarga este documento en PDF. Documentación en PDF para descargar gratis. Disponible también para leer online.

Reference: Ronald Kainda, (2011). Usability and security of human-interactive security protocols. DPhil. University of Oxford.Citable link to this page:

 

Usability and security of human-interactive security protocols

Abstract: We investigate the security and usability of Human-Interactive Security Protocols (HISPs);specifically, how digests of 4 or more digits can be compared between two or more sys-tems as conveniently as possible while ensuring that issues such as user complacency do not compromise security. We address the research question: given different association scenarios and modes of authentication in HISPs, how can we improve on existing, or design new, empirical channels that suit human and contextual needs to achieve acceptable effective security? We review the literature of HISPs, proposed empirical channels,and usability studies of HISPs; we follow by presenting the methodology of the research reported in this thesis. We then make a number of contributions discussing the effectiveness of empirical channels and address the design, analysis, and evaluation of thesechannels. In Chapter 4 we present a user study of pairwise device associations and discuss the factors affecting effective security of empirical channels in single-user scenarios. In Chapter 5 we present a user study of group device associations and discuss the factors affecting effective security of empirical channels in multi-user scenarios. In Chapter 7 we present a framework designed for researchers and system designers to reason about empirical channels in HISPs. The framework is grounded in experimental data, related research, and validated by experts. In Chapter 8 we present a methodology for analysing and evaluating the security and usability of HISPs. We validate the methodology by applying it in laboratory experiments of HISPs. Finally, in Chapter 6 we present a set of principles for designing secure and usable empirical channels. We demonstrate the effectiveness of these principles by proposing new empirical channels.

Digital Origin:Born digital Type of Award:DPhil Level of Award:Doctoral Awarding Institution: University of Oxford

Contributors

Prof Andrew William RoscoeMore by this contributor

RoleSupervisor

 

Dr Ivan FlechaisMore by this contributor

RoleSupervisor

 Bibliographic Details

Issue Date: 2011

Copyright Date: 2011 Identifiers

Urn: uuid:ea14d34a-d232-4c8b-98ab-abbf0d7a5d36 Item Description

Type: thesis;

Language: en Keywords: usable security human-computer interaction security protocols mobile device interactionsSubjects: Computing Computer security Computer security Human computer interaction Tiny URL: ora:5645

Relationships





Autor: Mr Ronald Kainda - institutionUniversity of Oxford facultyMathematical,Physical and Life Sciences Division - Computer Science,Dep

Fuente: https://ora.ox.ac.uk/objects/uuid:ea14d34a-d232-4c8b-98ab-abbf0d7a5d36



DESCARGAR PDF




Documentos relacionados