User interface dependability through goal-error prevention

Proceedings of the International Conference on Dependable Systems and Networks

Volumn , Issue , 2005, Pages 60-69

  Reeder, Robert W ^a   Maxion, Roy A ^a  

^a Carnegie Mellon University   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER SECURITY APPLICATIONS; GOAL-ERROR PREVENTION; HUMAN-MADE CONFIGURATION ERRORS; USER INTERFACE DEPENDABILITY;

ERROR ANALYSIS; INFORMATION RETRIEVAL; SECURITY OF DATA;

USER INTERFACES;

EID: 27544434179     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/DSN.2005.95     Document Type: Conference Paper

References (25)

1. A. Adams and M. A. Sasse. Users are not the enemy. Communications of the ACM, 42(12):41-46, 1999.
2. D. Balfanz. Usable access control for the World Wide Web. In Proceedings of 19th Annual Computer Security Applications Conference, pages 406-415, Los Alamitos, CA, 2003. IEEE Comp. Society. 08-12 Dec 2003, Las Vegas, NV.
3. D. Besnard and B. Arief. Computer security impaired by legitimate users. Computers & Security, 23(3):253-264, 2004.
4. S. Card. Information visualization. In J. A. Jacko and A. Sears, editors, The Human-Computer Interaction Handbook Fundamentals, Evolving Technologies and Emerging Applications, chapter 28, pages 544-582. Lawrence Erlbaum Associates, Mahwah, NJ, 2003.
5. P. Dewan and H. Shen. Controlling access in multiuser interfaces. ACM Transactions on Computer-Human Interaction, 5(1):34-62, 1998.
6. K. A. Ericsson and H. A. Simon. Protocol Analysis: Verbal Reports as Data. MIT Press, Cambridge, MA, Revised edition, 1993.
7. N. S. Good and A. Krekelberg. Usability and privacy: a study of Kazaa P2P file-sharing. In Proceedings of the ACM Conference on Human Factors in Computing Systems (CHI 2003), pages 137-144, New York, NY, 2003. ACM Press. 05-10 April 2003, Fort Lauderdale, Florida.
8. B. Kirwan. A Guide to Practical Human Reliability Assessment. Taylor & Francis, London, United Kingdom, 1994.
9. A. C. Long, C. Moskowitz, and G. Ganger. A prototype user interface for coarse-grained desktop access control. Technical Report CMU-CS-03-200, Comp. Sci. Dept, Carnegie Mellon University, Pittsburgh, PA, Nov. 2003.
10. Microsoft Corporation. Best practices for permissions and user rights. Available at http://www.microsoft.com/resources/documentation/ windowsserv/2003/stand%ard/proddocs/en-us/sag_SEconceptsImpACBP.asp, 2005.
11. Microsoft Corporation. Microsoft Technet: Windows XP file permissions documentation, 2005. http://www.microsoft.com/technet/treeview/default.asp?url=/ technet/prod%technol/winxppro/proddocs/acl_special_permissions.asp.
12. J. Nielsen and R. L. Mack. Usability Inspection Methods. John Wiley & Sons, Inc., New York, NY, 1994.
13. D. A. Norman. The Design of Everyday Things. Doubleday, New York, NY, 1988.
14. S. Pocock, M. Harrison, P. Wright, and P. Johnson. Thea: A technique for human error assessment early in design. In Proceeding of 8th IFIP TC.13 Conference on Human-Computer Interaction, pages 247-254, Amsterdam, 2001. IOS Press. 09-13 July 2001, Tokyo, Japan.
15. J. Reason. Human Error. Cambridge University Press, Cambridge, UK, 1990.
16. G. Sampemane, P. Naldurg, and R. H. Campbell. Access control for active spaces. In Proceedings of the 18th Annual Computer Security Applications Conference, pages 343-352, Los Alamitos, CA, 2002. IEEE Computer Society. 09-13 December 2002, Las Vegas, NV.
17. J. W. Senders and N. P. Moray. Human Error: Cause, Prediction, and Reduction. Lawrence Erlbaum Associates, Hillsdale, New Jersey, 1991.
18. R. Smith. Personal communication, March 2004.
19. U.S. Senate Sergeant at Arms. Report on the investigation into improper access to the Senate Judiciary Committees computer system. Available at http://judiciary.senate.gov/testimony.cfm?id=1085&wit_id=2514, March 2004.
20. A. Whitten and J. Tygar. Why Johnny can't encrypt: A usability evaluation of PGP 5.0. In Proceedings of the 8th USENIX Security Symposium, pages 169-184, Berkeley, California, 1999. USENIX Association. 23-26 August 1999, Washington, DC.
21. D. A. Wiegmann and S. A. Shappell. A Human Error Approach to Aviation Accident Analysis. Ashgate Publishing Co., Aldershot, Hants, United Kingdom, 2003.
22. D. D. Woods and E. M. Roth. Cognitive systems engineering. In M. Helander, editor, Handbook of Human-Computer Interaction, chapter 1, pages 3-43. Elsevier Science Publishers B.V., Amsterdam, The Netherlands, 1st edition, 1988.
23. K. Yee. User interaction design for secure systems. In Information and Communications Security, 4th International Conference, ICICS 2002, Singapore, Lecture Notes in Computer Science, Vol. 2513, pages 278-290, New York, NY, 2002. Springer. 09-12 December 2002, Singapore.
24. M. E. Zurko, R. Simon, and T. Sanfilippo. A user-centered, modular authorization service built on an RBAC foundation. In Proceedings 1999 IEEE Symposium on Security and Privacy, pages 57-71, Los Alamitos, CA, 1999. IEEE Computer Security Press. 09-12 May 1999, Berkeley, California.
25. M. E. Zurko and R. T. Simon. User-centered security. In Proceedings of Workshop on New Security Paradigms, pages 27-33, New York, NY, 1996. ACM Press. 17-20 September 1996, Lake Arrowhead, CA.