Campus Event Calendar
Event Entry
New for: D2, D3
What and Who
Designing systems that are secure and usable
Prof. M. Angela Sasse
University College London, UK
SWS Distinguished Lecture Series
M. Angela Sasse is the Professor of Human-Centred Technology and
Head of Information Security Research in the Department of Computer
Science at University College London, UK. A usability researcher by
training, she started investigating the causes and effects of usability
issues with security mechanisms in 1996. In addition to studying
specific mechanisms such as passwords, biometrics, and access control,
her research group has developed human-centred frameworks that explain
the role of security, privacy, identity and trust in human interactions
with technology. A list of project and publications can be found at
http://sec.cs.ucl.ac.uk/people/m_angela_sasse/
AG 1, AG 2, AG 3, AG 4, AG 5, SWS, RG1, MMCI
Expert Audience
English
Note: We use this to send email in the morning.
Date, Time and Location
Wednesday, 12 January 2011
13:30
90 Minutes
G26
206
Kaiserslautern
Abstract
The number of systems and services that people interact with has
increased rapidly over the past 20 years. Most of those systems and
services have security controls, but until recently, the usability of
those mechanims was not considered. Research over the past 15 years has
provide ample evidence that systems that are not usable are not secure,
either, because users make mistakes or devise workarounds that create
vulnerabilities. In this talk, I will present an overview of the most
pressing problems, and what research on usable security (HCISec) has
produced in response to this challenge. I will argue that past attempts
have been focussed on improving user interfaces to security mechanisms,
but that delivering systems with usable and effective security controls
requires a change in how we design and implement security in systems and
services. The talk will present examples of new approaches to
requirements capture and system design, and new approaches to 'security
thinking' in organisations.
increased rapidly over the past 20 years. Most of those systems and
services have security controls, but until recently, the usability of
those mechanims was not considered. Research over the past 15 years has
provide ample evidence that systems that are not usable are not secure,
either, because users make mistakes or devise workarounds that create
vulnerabilities. In this talk, I will present an overview of the most
pressing problems, and what research on usable security (HCISec) has
produced in response to this challenge. I will argue that past attempts
have been focussed on improving user interfaces to security mechanisms,
but that delivering systems with usable and effective security controls
requires a change in how we design and implement security in systems and
services. The talk will present examples of new approaches to
requirements capture and system design, and new approaches to 'security
thinking' in organisations.
Contact
Claudia Richter
688
--email hidden
Video Broadcast
Yes
Saarbrücken
E1 5
5th floor
passcode not visible
logged in users only
Claudia Richter, 01/07/2011 09:44 -- Created document.