In Search of Perfect Users: Towards Understanding the Usability of Converged Multi-Level Secure User Interfaces
| Title | In Search of Perfect Users: Towards Understanding the Usability of Converged Multi-Level Secure User Interfaces |
| Publication Type | Conference Paper |
| Year of Publication | 2018 |
| Authors | Issa, Abdullah, Murray, Toby, Ernst, Gidon |
| Conference Name | Proceedings of the 30th Australian Conference on Computer-Human Interaction |
| Publisher | ACM |
| ISBN Number | 978-1-4503-6188-0 |
| Keywords | compositionality, Cyber physical system, decomposition, Metrics, Multi-Level Security, pubcrawl, security indicators, usable security |
| Abstract | Converged Multi-Level Secure systems allow users to interact with and freely move between applications and data of varying sensitivity on a single user interface. They promise unprecedented usability and security, especially in security-critical environments like Defence. Yet these promises rely on hard assumptions about secure user behaviour. We present initial work to test the validity of these assumptions in the absence of deception by an adversary. We conducted a user study with 21 participants on the Cross Domain Desktop Compositor. Chief amongst our findings is that the vast majority of participants (19 of 21) behave securely, even when doing so requires more effort than to behave insecurely. Our findings suggest that there is large scope for further research on converged Multi-Level Secure systems, and highlight the value of user studies to complement formal security analyses of critical systems. |
| URL | https://dl.acm.org/doi/10.1145/3292147.3292231 |
| DOI | 10.1145/3292147.3292231 |
| Citation Key | issa_search_2018 |