A framework for evaluating the usability and the utility of PKI-enabled applications

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 3093, Issue , 2004, Pages 112-125

  Straub, Tobias ^a   Baier, Harald ^a  

^a DARMSTADT UNIVERSITY OF TECHNOLOGY   (Germany)

Author keywords

Common Criteria; Cryptography; Ergonomics; Evaluation; PKI; Usability; Usefulness; Utility

Indexed keywords

CRYPTOGRAPHY; ERGONOMICS; PUBLIC KEY CRYPTOGRAPHY;

COMMON CRITERIA; EVALUATION; USABILITY; USEFULNESS; UTILITY;

USABILITY ENGINEERING;

EID: 35048814469     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-540-25980-0_9     Document Type: Review

References (13)

1. A. Adams and M. A. Sasse. Users are Not the Enemy: Why Users Compromise Security Mechanisms and How to Take Remedial Measures. Communications of the ACM 42 (12), 1999, 41-16.
2. J. Buchmann, H. Baier, and T. Straub. Absicherung von Anwendungen mit der Unterstützung von Public-Key-Infrastrukturen - Benutzbarkeitsstudie im Auftrag der Microsoft Deutschland GmbH, 2003. (in German)
3. D. Davis. Compliance Defects in Public-Key Cryptography. 6th USENIX Security Symposium, San Jose, USA, 1996.
4. D. Gerd tom Markotten and J. Kaiser. Usable Security - challenges and model for e-commerce systems, Wirtschaftsinformatik (6), 2000, 531-538.
5. U. Holmström. User-centered design of security software. 17th International Symposium on Human Factors in Telecommunications, Copenhagen, Denmark, 1999.
6. ISO 15408: Common Criteria for Information Technology Security Evaluation (CC) Version 2.0, 1998.
7. ISO 9241: Ergonomic requirements for office work with visual display terminals.
8. J. Kaiser and M. Reichenbach. Evaluating security tools towards usable security. IFIP 17th World Computer Congress, Montreal, Canada, 2002.
9. J. Nielsen. Usability Engineering. AP Professional, Cambridge, 1993.
10. M. A. Sasse. Computer Security: Anatomy of a Usability Disaster, and a Plan for Recovery. CHI 2003, Workshop on Human-Computer Interaction and Security Systems, Fort Lauderdale, USA, 2003.
11. B. Schneier. Secrets and Lies, Wiley, 2000.
12. J. Voßbein and R. Voßbein. KES/KPMG-Sicherheitsstudie: Lagebericht zur IT-Sicherheit. kes 3 and 4, 2002, available online http://www.kes.info. (in German)
13. A. Whitten and J. D. Tygar. Why Johnny Can't Encrpyt: A Usability Evaluation of PGP 5.0. 8th USENIX Security Symposium, Washington DC, USA, 1999.