Aarhus University Seal / Aarhus Universitets segl

Susanne Bødker

Threats or threads: from usable security to secure experience

Research output: Contribution to book/anthology/report/proceedingArticle in proceedingsResearchpeer-review

  • Department of Computer Science
While the domain of security dependent technologies brings new challenges to HCI research it seems that the results and breakthroughs of HCI have not been used in design of security dependent technologies. With exceptions, work in the research field of usable security may be criticized for focusing mainly on adjusting user behavior to behave securely. With our background in newer HCI perspectives we address secure interaction from the perspective of security technology as experience. We analyze a number of collected user stories to understand what happens when everyday users encounter security dependent technologies. We apply McCarthy & Wright's [12] experience framework to the security domain and our collected stories. We point out that there are significant differences between being secure and having a secure experience, and conclude that classical usable security, focus on people's immediate security experience, and the full focus on experience proposed by McCarthy & Wright lead to three very different interaction concerns, analytically and as regards design. We illustrate these differences by examples, and conclude with a discussion of how to advance the field of usable security.
Original languageEnglish
Title of host publicationACM International Conference Proceeding Series : Proceedings of the 5th Nordic conference on Human-computer interaction: building bridges
EditorsKonrad Tollmar, Bodil Jönsson
Number of pages8
PublisherAssociation for Computing Machinery
Publication year2008
ISBN (print)978-1-59593-704-9
ISBN (Electronic)doi.acm.org/10.1145/1463160.1463191
Publication statusPublished - 2008
EventNordiCHI 2008 - Lund, Sweden
Duration: 20 Oct 200822 Oct 2008
Conference number: 5


ConferenceNordiCHI 2008

    Research areas

  • experience, human-computer interaction, usability, usable security, user experience, user story collection, user testing

See relations at Aarhus University Citationformats

ID: 13053790