Two experiences designing for effective security

ACM International Conference Proceeding Series

Volumn 93, Issue , 2005, Pages 25-34

  De Paula, Rogério ^a   Ding, Xianghua ^a   Dourish, Paul ^a   Nies, Kari ^a   Pillet, Ben ^a   Redmiles, David ^a   Ren, Jie ^a   Rode, Jennifer ^a   Filho, Roberto Silva ^a  

^a UNIVERSITY OF CALIFORNIA   (United States)

Author keywords

Effective security; Event based architecture; Impromptu; Peer to peer filesharing application; Privacy practices; Theoretical security; Usable security; Vavoom; Visualization; YANCEES

Indexed keywords

EFFECTIVE SECURITY; EVENT-BASED; FILE SHARING APPLICATION; PEER TO PEER; PRIVACY PRACTICES; THEORETICAL SECURITY; USABLE SECURITY; YANCEES;

VISUALIZATION;

ACCESS CONTROL;

EID: 77953740422     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1073001.1073004     Document Type: Conference Paper

References (25)

1. Carzaniga, A., Rosenblum, D. S., and Wolf, A. L. 2001. Design and Evaluation of a Wide-Area Event Notification Service. ACM Transactions on Computer Systems, August, Vol. 19 Issue 3, pp. 332-383.
2. Denning, D. 1987. An Intrusion-Detection Model. IEEE Trans. Software Engineering, 13(2), 222-232.
3. de Paula, R. (2004). The construction of usefulness: How users and context create meaning with a social networking system. Unpublished Unpublished Ph.D. Dissertation, University of Colorado at Boulder, Boulder, CO.
4. de Paula, R., Ding, X., Dourish, P., Nies, K., Pillet, B., Redmiles, D., et al. (2005). In the eye of the beholder: A visualization-base approach to information system security. International Journal of Human-Computer Studies (to appear).
5. Dourish, P., & Anderson, K. (2005). Privacy, security and risk and danger and secrecy and trust and identity and morality and power: Understanding collective information practices: Irvine, CA: Institute for Software Research. Technical Report UCI-ISR- 05-1.
6. Dourish, P. and Byttner, J. (2002). A Visual Virtual Machine for Java Programs: Exploration and Early Experiences. Proceedings of the ICDMS Workshop on Visual Computing (Redwood City, CA).
7. Dourish, P., Grinter, R., Delgado de la Flor, J., and Joseph, M. (2004). Security in the Wild: User Strategies for Managing Security as an Everyday, Practical Problem. Personal and Ubiquitous Computing, 8(6), 391-401.
8. Dourish, P. and Redmiles, D. (2002). An Approach to Usable Security Based on Event Monitoring and Visualization. Proceedings of the New Security Paradigms Workshop 2002 (Virginia Beach, VA). New York: ACM.
9. Goland, Y., Whitehead, E., Faizi, A., Carter, S. and Jensen, D., 1999. HTTP Extensions for Distributed Authoring - WEBDAV. Internet Engineering Task Force, Internet Proposed Standard Request for Comments 2518, February.
10. Good, N., and Krekelberg, A. 2003. Usability and Privacy: A study of Kazaa P2P file-sharing. Proc. ACM Conf. Human Factors in Computing Systems CHI 2003 (Ft Lauderdale, FL). New York: ACM.
11. Henning, R. 1999. Security Service Level Agreements: Quantifiable Security for the Enterprise? New Security Paradigm Workshop (Ontario, Canada), 54-60. IEEE.
12. th Annual Computer Security Applications Conference. IEEE.
13. Irvine, C. and Levin, T. 2001. Quality of Security Service. Proc. ACM New Security Paradigms Workshop, 91-99.
14. Kantor, M., Redmiles, D. 2001. Creating an Infrastructure for Ubiquitous Awareness, Eight IFIP TC 13 Conference on Human-Computer Interaction (INTERACT 2001-Tokyo, Japan), 431- 438.
15. Lunt, T. and Jagannathan. 1988. A Prototype Real-Time Intrusion-Detection Export System. Proc. IEEE Symposium on Security and Privacy, 59-66. New York: IEEE.
16. Orlikowski, W. J., & Gash, D. C. (1994). Technological frames: Making sense of information technology in organizations. ACM Transactions on Information Systems (TOIS), 12(2), 174-207.
17. Palen, L. and P. Dourish (2003). Unpacking "privacy" for a networked world. Proceedings of the SIGCHI conference on Human factors in computing systems, Ft. Lauderdale, Florida, USA, ACM Press.
18. Segall, B. and Arnold, D. (1997). Elvin has left the building: A publish/subscribe notification service with quenching Proceedings AUUG97 (Brisbane, Australia).
19. Sheehan, K. 2002. Towards a Typology of Internet Users and Online Privacy Concerns. The Information Society, 18, 21-23.
20. Silva Filho R. S., De Souza C. R. B., and Redmiles D. F.(2003). The Design of a Configurable, Extensible and Dynamic Notification Service. Proc. Second International Workshop on Distributed Event-Based Systems (DEBS'03), .
21. th Computer Security Applications Conference. IEEE.
22. Tatar, D., Foster, G., and Bobrow, D. (1991). Designing for Conversation: Lessons from Cognoter. International Journal of Man-Machine Studies, 34, 185-209.
23. th Annual Computer Security Applications Conference. IEEE.
24. Whitten, A. and Tygar, J.D. 1999. Why Johnny Can't Encrypt: A Usability Evaluation of PGP 5.0. Proc. Ninth USENIX Security Symposium.
25. Zurko, M.E. and Simon, R. 1996. User-Centered Security. Proc. New Security Paradigms Workshop. ACM.