Usable Cybersecurity: a Contradiction in Terms?

IF 1 4区计算机科学 Q3 COMPUTER SCIENCE, CYBERNETICS

Interacting with Computers Pub Date : 2024-01-24 DOI:10.1093/iwc/iwad035

Steven Furnell

{"title":"Usable Cybersecurity: a Contradiction in Terms?","authors":"Steven Furnell","doi":"10.1093/iwc/iwad035","DOIUrl":null,"url":null,"abstract":"Encounters and interactions with cybersecurity are now regular and routine experiences for information technology users across a variety of devices, systems and services. Unfortunately, however, despite long-term recognition of the importance of usability in the technology context, the user experience of cybersecurity and privacy is by no means guaranteed to address this criterion. This paper presents an outline of usability issues and challenges in the cybersecurity context, with examples of how it has (or indeed has not) evolved in some established contexts (looking in particular at web browsing and user authentication), as well as consideration of the extent to which any better attention is apparent within more recent and emerging technology contexts (considering the presentation of related features in scenarios including app stores and smart devices). Based on the evidence, cybersecurity is clearly yet to reach a stage where its mention would naturally imply usability, but at the same time the two concepts do not have to represent a contradiction in terms. The resulting requirement is for the increasing recognition of the issue to translate into a greater level of resulting attention and action.","PeriodicalId":50354,"journal":{"name":"Interacting with Computers","volume":null,"pages":null},"PeriodicalIF":1.0000,"publicationDate":"2024-01-24","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Interacting with Computers","FirstCategoryId":"94","ListUrlMain":"https://doi.org/10.1093/iwc/iwad035","RegionNum":4,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q3","JCRName":"COMPUTER SCIENCE, CYBERNETICS","Score":null,"Total":0}

引用次数: 0

Abstract

Encounters and interactions with cybersecurity are now regular and routine experiences for information technology users across a variety of devices, systems and services. Unfortunately, however, despite long-term recognition of the importance of usability in the technology context, the user experience of cybersecurity and privacy is by no means guaranteed to address this criterion. This paper presents an outline of usability issues and challenges in the cybersecurity context, with examples of how it has (or indeed has not) evolved in some established contexts (looking in particular at web browsing and user authentication), as well as consideration of the extent to which any better attention is apparent within more recent and emerging technology contexts (considering the presentation of related features in scenarios including app stores and smart devices). Based on the evidence, cybersecurity is clearly yet to reach a stage where its mention would naturally imply usability, but at the same time the two concepts do not have to represent a contradiction in terms. The resulting requirement is for the increasing recognition of the issue to translate into a greater level of resulting attention and action.

查看原文本刊更多论文

可用的网络安全：自相矛盾？

现在，信息技术用户在各种设备、系统和服务上与网络安全的接触和互动已成为常规和例行的体验。然而，遗憾的是，尽管人们长期以来一直认识到可用性在技术领域的重要性，但网络安全和隐私的用户体验绝不能保证满足这一标准。本文概述了网络安全背景下的可用性问题和挑战，举例说明了在一些既定背景下可用性是如何发展的（或实际上并没有发展）（特别关注网页浏览和用户身份验证），并考虑了在较新的和新兴的技术背景下（考虑到应用程序商店和智能设备等场景中相关功能的呈现），可用性在多大程度上得到了更好的关注。根据这些证据，网络安全显然还没有达到这样一个阶段，即提到网络安全就会自然而然地想到可用性，但同时这两个概念并不一定是相互矛盾的。由此产生的要求是，对这一问题的认识不断提高，从而转化为更大程度的关注和行动。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Interacting with Computers 工程技术-计算机：控制论

CiteScore

2.70

自引率

0.00%

发文量

审稿时长

>12 weeks

期刊介绍： Interacting with Computers: The Interdisciplinary Journal of Human-Computer Interaction, is an official publication of BCS, The Chartered Institute for IT and the Interaction Specialist Group . Interacting with Computers (IwC) was launched in 1987 by interaction to provide access to the results of research in the field of Human-Computer Interaction (HCI) - an increasingly crucial discipline within the Computer, Information, and Design Sciences. Now one of the most highly rated journals in the field, IwC has a strong and growing Impact Factor, and a high ranking and excellent indices (h-index, SNIP, SJR).