Security mechanisms like encryption are an undeniable necessity. However, no matter how
good they are, they might not be sufficient to adequately protect users as many breaches already happen at the user interface level. This is mostly the case if the usability of the system is low and/or if it is too difficult to understand. The main problem is that security is never the user’s primary goal and thus, security mechanisms are considered a barrier between the users and the tasks they want to perform. This can be seen as an extra burden for developers of secure systems as usability problems not only influence the performance and create annoyance but also directly affect security.
This talk provides insights into how users can be taken into the loop when designing secure and privacy respectful systems and how this positively affects overall system security. Several examples of usable security research projects will be described with a special emphasis on the development of the security mechanisms by talking human factors into account.