Interaction Design Foundation
Free educational materials - made by the world's technology elite
 
Join us on Linkedin
Join us on Twitter
Join us on Google plus
Get our RSS Feed
 
 
ReferencesNavigation arrowAuthorsNavigation arrowA. W. Roscoe
Jun 20

...that strange new zone between medium and message. That zone we call the interface

-- Steven Johnson, 1997

 
 

Featured chapter

Read the fascinating history of Wearable Computing, told by its father, Steve Mann

Read Steve's chapter !

 
 

Latest books

The Social Design of Technical Systems: Building technologies for communities
by Brian Whitworth and Adnan Ahmad

 
Start reading

The Encyclopedia of Human-Computer Interaction, 2nd Ed.
by Mads Soegaard and Rikke Friis Dam

 
Start reading
 
 

Help us help you!

 
 

A. W. Roscoe

Picture of A. W. Roscoe. Copyright unknown.
Add description
Add publication

Publications by A. W. Roscoe (bibliography)

 what's this?
2010
 
Edit | Del

Kainda, Ronald, Flechais, Ivan and Roscoe, A. W. (2010): Two heads are better than one: security and usability of device associations in group scenarios. In: Proceedings of the 2010 Symposium on Usable Privacy and Security 2010. p. 5.

We analyse and evaluate the usability and security of the process of bootstrapping security among devices in group scenarios. While a lot of work has been done in single user scenarios, we are not aware of any that focusses on group situations. Unlike in single user scenarios, bootstrapping security in a group requires coordination, attention, and cooperation of all group members. In this paper, we provide an analysis of the security and usability of bootstrapping security in group scenarios and present the results of a usability study on these scenarios. We also highlight crucial factors necessary for designing for secure group interactions.

© All rights reserved Kainda et al. and/or their publisher

2009
 
Edit | Del

Kainda, Ronald, Flechais, Ivan and Roscoe, A. W. (2009): Usability and security of out-of-band channels in secure device pairing protocols. In: Proceedings of the 2009 Symposium on Usable Privacy and Security 2009. p. 11.

Initiating and bootstrapping secure, yet low-cost, ad-hoc transactions is an important challenge that needs to be overcome if the promise of mobile and pervasive computing is to be fulfilled. For example, mobile payment applications would benefit from the ability to pair devices securely without resorting to conventional mechanisms such as shared secrets, a Public Key Infrastructure (PKI), or trusted third parties. A number of methods have been proposed for doing this based on the use of a secondary out-of-band (OOB) channel that either authenticates information passed over the normal communication channel or otherwise establishes an authenticated shared secret which can be used for subsequent secure communication. A key element of the success of these methods is dependent on the performance and effectiveness of the OOB channel, which usually depends on people performing certain critical tasks correctly. In this paper, we present the results of a comparative usability study on methods that propose using humans to implement the OOB channel and argue that most of these proposals fail to take into account factors that may seriously harm the security and usability of a protocol. Our work builds on previous research in the usability of pairing methods and the accompanying recommendations for designing user interfaces that minimise human mistakes. Our findings show that the traditional methods of comparing and typing short strings into mobile devices are still preferable despite claims that new methods are more usable and secure, and that user interface design alone is not sufficient in mitigating human mistakes in OOB channels.

© All rights reserved Kainda et al. and/or ACM Press

1987
 
Edit | Del

Hoare, C. A. R., Hayes, Ian J., He, Jifeng, Morgan, Carroll, Roscoe, A. W., Sanders, Jeff W., Sřrensen, Ib Holm, Spivey, J. Michael and Sufrin, Bernard (1987): Laws of Programming. In Communications of the ACM, 30 (8) pp. 672-686.

 
Add publication
Show list on your website
 
 

Join the technology elite and advance:

 
1.

Your career

 
2.

Your network

 
 3.

Your skills

 
 
 
 
 
 

Changes to this page (author)

02 Nov 2010: Modified
08 Sep 2009: Modified
17 Aug 2009: Added

Page Information

Page maintainer: The Editorial Team
URL: http://www.interaction-design.org/references/authors/a__w__roscoe.html
Jun 20

...that strange new zone between medium and message. That zone we call the interface

-- Steven Johnson, 1997

 
 

Featured chapter

Read the fascinating history of Wearable Computing, told by its father, Steve Mann

Read Steve's chapter !

 
 

Latest books

The Social Design of Technical Systems: Building technologies for communities
by Brian Whitworth and Adnan Ahmad

 
Start reading

The Encyclopedia of Human-Computer Interaction, 2nd Ed.
by Mads Soegaard and Rikke Friis Dam

 
Start reading
 
 

Help us help you!

 
 
 
 
About | Press kit / Media kit | Copyright/IP Policy | General Terms of Use / General Site Terms and Conditions | Privacy Policy

How to help | Site Map

RSS Subscribe through an RSS feed
 
.