A Systematic Literature Review of Empirical Methods and Risk Representation in Usable Privacy and Security Research

Verena DIstler, Matthias Fassl, Hana Habib, Katharina Krombholz, Gabriele Lenzini, Carine Lallemand, Lorrie Faith Cranor, Vincent Koenig

Onderzoeksoutput: Bijdrage aan tijdschriftArtikel recenserenpeer review

31 Citaten (Scopus)
121 Downloads (Pure)

Samenvatting

Usable privacy and security researchers have developed a variety of approaches to represent risk to research participants. To understand how these approaches are used and when each might be most appropriate, we conducted a systematic literature review of methods used in security and privacy studies with human participants. From a sample of 633 papers published at five top conferences between 2014 and 2018 that included keywords related to both security/privacy and usability, we systematically selected and analyzed 284 full-length papers that included human subjects studies. Our analysis focused on study methods; risk representation; the use of prototypes, scenarios, and educational intervention; the use of deception to simulate risk; and types of participants. We discuss benefits and shortcomings of the methods, and identify key methodological, ethical, and research challenges when representing and assessing security and privacy risk. We also provide guidelines for the reporting of user studies in security and privacy.

Originele taal-2Engels
Artikelnummer43
Aantal pagina's50
TijdschriftACM Transactions on Computer-Human Interaction
Volume28
Nummer van het tijdschrift6
DOI's
StatusGepubliceerd - dec. 2021

Bibliografische nota

Publisher Copyright:
© 2021 Copyright held by the owner/author(s).

Financiering

This work is supported by the Fonds National de la Recherche (PRIDE15/10621687) and the Carnegie Corporation of New York. Authors’ addresses: V. Distler, G. Lenzini, and V. Koenig, University of Luxembourg; M Fassl and K. Krombholz, University of Luxembourg Maison des Sciences Humaines 11, Porte des Sciences L-4366 Esch-sur-Alzette Luxembourg; H. Habib and L. F. Cranor, Carnegie Mellon University, 4720 Forbes Avenue, Pittsburgh, PA 15213, United States; emails: [email protected], [email protected]; C. Lallemand, Eindhoven University of Technology & University of Luxembourg.

Vingerafdruk

Duik in de onderzoeksthema's van 'A Systematic Literature Review of Empirical Methods and Risk Representation in Usable Privacy and Security Research'. Samen vormen ze een unieke vingerafdruk.

Citeer dit