Human-in-the-loop: Rethinking security in mobile and pervasive systems

Conference on Human Factors in Computing Systems - Proceedings

Volumn , Issue , 2008, Pages 3075-3080

  Kostakos, Vassilis ^a   O'Neill, Eamonn ^b  

^a UNIVERSITY OF MADEIRA   (Portugal)

^b University of Bath   (United Kingdom)

Author keywords

Mobility; Pervasive and ubiquitous systems; Security; Sociability; Usability

Indexed keywords

HUMAN ENGINEERING; SATELLITE OBSERVATORIES; UBIQUITOUS COMPUTING;

MOBILITY; PERVASIVE AND UBIQUITOUS SYSTEMS; SECURITY; SOCIABILITY; USABILITY;

COMPUTER SYSTEMS;

EID: 57049108759     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1358628.1358810     Document Type: Conference Paper

References (20)

1. Adams, A. and Sasse, M.A (1999). Users are not the enemy. Communications of the ACM, 42(12): 41-46.
2. Atwood, J (2006). Windows Vista: Security through endless warning dialogs, http://www.codinghorror.com/blog/archives/000571.html
3. Brostoff, S., and Sasse, M.A. (2001). Safe and sound: a safety-critical approach to security. NSPW, New Mexico, USA, pp. 41-50.
4. Chiasson, S., Biddle, R., van Oorschot, PC. (2007). A Second Look at the Usability of Click-Based Graphical Passwords. Symposium on usable privacy and security, Pittsburgh, USA.
5. Cranor, L. & Garfinkel, S. (2005). Security and Usability: Designing Secure Systems that People Can Use. O'Reillly Media, Inc.
6. Dhamija, R. &Tygar, J.D. (2005). The Battle Against Phishing: Dynamic Security Skins. Symposium on usable privacy and security, Pittsburgh, USA.
7. Dhamija, R., Tygar, J. D., and Hearst, M. (2006). Why phishing works. Proc. CHI 2006, 581-590.
8. Flechais, I., Riegelsberger, J., Sasse, M.A. (2005). Divide and Conquer: the role of trust and assurance in the design of secure socio-technical systems. Proc. New security paradigms workshop 2005, Lake Arrowhead, California, USA.
9. Kaufman, C., Perlman, R., and Speciner M. (2002). Network Security: Private Communication in a Public World, 2nd ed., Prentice-Hall.
10. Kindberg, T. & Zhang, K. (2002). Validating and Securing Spontaneous Associations between Wireless Devices. Proc. 6th Information Security Conference (ISC'03), LNCS 2581, Springer, 44-53.
11. Kostakos, V., O'Neill, E., Shahi, A. (2006). Building Common Ground for Face to Face Interactions by Sharing Mobile Device Context. Proc. LOCA 2006, Dublin, Ireland. LNCS 3987, Springer, 222-238.
12. Kostakos, V. and O'Neill, E. (2007). NFC on mobile phones: issues, lessons and future research. Proc. Percom 2007, Pervasive RFID/NFC Technology Workshop (Pertec 2007), NY, USA, 367-370.
13. Mayrhofer R. & Gellersen, H. (2007). Shake well before use: Authentication based on accelerometer data. In Proc. Pervasive 2007, LNCS 4480, Springer, 44-161,
14. Mitnick, K. D. & Simon, W. L. (2003). The Art of Deception: Controlling the Human Element of Security. John Wiley & Sons Inc.
15. O'Neill, E., Thompson, P., Garzonis, S. and Warr, A. (2007). Reach out and touch: using NFC and 2D barcodes for service discovery and interaction with mobile devices. In Proc. Pervasive 2007, LNCS 4480, Springer, 19-36.
16. Poulsen K: "Mitnick to lawmakers: People, phones and weakest links', (March 2000) -http://www.politechbot.com/p-00969.html
17. Saltzer, J.H. & Schroeder, M.D. (1975). The Protection of Information in Computer Systems. Proc. IEEE, 63(9):1278-1308.
18. Smith, S.W. (2003). Humans in the Loop. IEEE Security & Privacy, 1(3):75-79.
19. Stajano, F. (2003). Security for Whom? The shifting security assumptions of pervasive computing. Proc. Software Security - Theories and Systems, LNCS 2609, Springer, 16-27.
20. Yee, K.P. & Sitake, K. (2006). Passpet: convenient password management and phishing protection. Proc. Symposium on usable privacy and security, Pittsburgh, USA.