Search

Your search keyword '"Dietrich, Sven"' showing total 208 results
Start Over Author "Dietrich, Sven"

Refine your results

more »

more »

more »

more »
208 results on '"Dietrich, Sven"'

1. PRETT2: Discovering HTTP/2 DoS Vulnerabilities via Protocol Reverse Engineering

Author

Lee, Choongin, Jafarov, Isa, Dietrich, Sven, Lee, Heejo, Goos, Gerhard, Series Editor, Hartmanis, Juris, Founding Editor, Bertino, Elisa, Editorial Board Member, Gao, Wen, Editorial Board Member, Steffen, Bernhard, Editorial Board Member, Yung, Moti, Editorial Board Member, Garcia-Alfaro, Joaquin, editor, Kozik, Rafał, editor, Choraś, Michał, editor, and Katsikas, Sokratis, editor

Published
2024
Full Text
View/download PDF

2. Fingerprinting Cryptographic Protocols with Key Exchange using an Entropy Measure

Author

Luo, Shoufu and Dietrich, Sven

Subjects
Computer Science - Cryptography and Security
Abstract

Encryption has increasingly been used in all applications for various purposes, but it also brings big challenges to network security. In this paper, we take first steps towards addressing some of these chal- lenges by introducing a novel system to identify key exchange protocols, which are usually required if encryption keys are not pre-shared. We ob- served that key exchange protocols yield certain patterns of high-entropy data blocks, e.g. as found in key material. We propose a multi-resolution approach of accurately detecting high-entropy data blocks and a method of generating scalable fingerprints for cryptographic protocols. We pro- vide experimental evidence that our approach has great potential for identifying cryptographic protocols by their unique key exchanges, and furthermore for detecting malware traffic that includes customized key exchange protocols.

Published
2017

3. QuickBCC: Quick and Scalable Binary Vulnerable Code Clone Detection

Author

Jang, Hajin, Yang, Kyeongseok, Lee, Geonwoo, Na, Yoonjong, Seideman, Jeremy D., Luo, Shoufu, Lee, Heejo, Dietrich, Sven, Rannenberg, Kai, Editor-in-Chief, Soares Barbosa, Luís, Editorial Board Member, Goedicke, Michael, Editorial Board Member, Tatnall, Arthur, Editorial Board Member, Neuhold, Erich J., Editorial Board Member, Stiller, Burkhard, Editorial Board Member, Tröltzsch, Fredi, Editorial Board Member, Pries-Heje, Jan, Editorial Board Member, Kreps, David, Editorial Board Member, Reis, Ricardo, Editorial Board Member, Furnell, Steven, Editorial Board Member, Mercier-Laurent, Eunika, Editorial Board Member, Winckler, Marco, Editorial Board Member, Malaka, Rainer, Editorial Board Member, Jøsang, Audun, editor, Futcher, Lynn, editor, and Hagen, Janne, editor

Published
2021
Full Text
View/download PDF

4. Network Attack Detection and Defense - AI-Powered Threats and Responses (Dagstuhl Seminar 23431)

Author

Sven Dietrich and Frank Kargl and Hartmut König and Pavel Laskov and Artur Hermann, Dietrich, Sven, Kargl, Frank, König, Hartmut, Laskov, Pavel, Hermann, Artur, Sven Dietrich and Frank Kargl and Hartmut König and Pavel Laskov and Artur Hermann, Dietrich, Sven, Kargl, Frank, König, Hartmut, Laskov, Pavel, and Hermann, Artur

Abstract

This report documents the program and the findings of Dagstuhl Seminar 23431 "Network Attack Detection and Defense - AI-Powered Threats and Responses". With the emergence of artificial intelligence (AI), attack detection and defense are taking on a new level of quality. Artificial intelligence will promote further automation of attacks. There are already examples of this, such as the Deep Locker malware. It is expected that we will soon face a situation in which malware and attacks will become more and more automated, intelligent, and AI-powered. Consequently, today’s threat response systems will become more and more inadequate, especially when they rely on manual intervention of security experts and analysts. The main objective of the seminar was to assess the state of the art and potentials that AI advances create for both attackers and defenders. The seminar continued the series of Dagstuhl events "Network Attack Detection and Defense" held in 2008, 2012, 2014, and 2016. The objectives of the seminar were threefold, namely (1) to investigate various scenarios of AI-based malware and attacks, (2) to debate trust in AI and modeling of threats against AI, and (3) to propose methods and strategies for AI-powered network defenses. At the seminar, which brought together participants from academia and industry, we stated that recent advances in artificial intelligence have opened up new possibilities for each of these directions. In general, more and more researchers in networking and security look at AI-based methods which made this a timely event to assess and categorize the state of the art as well as work towards a roadmap for future research. The outcome of the discussions and the proposed research directions are presented in this report.

Published
2024
Full Text
View/download PDF

5. MIAMI-AD (Methylation in Aging and Methylation in AD): an integrative knowledgebase that facilitates explorations of DNA methylation across sex, aging, and Alzheimer’s disease

Author

Lukacsovich, David, primary, O’Shea, Deirdre, additional, Huang, Hanchen, additional, Zhang, Wei, additional, Young, Juan I., additional, Chen, X. Steven, additional, Dietrich, Sven-Thorsten, additional, Kunkle, Brian, additional, Martin, Eden R., additional, and Wang, Lily, additional

Published
2023
Full Text
View/download PDF

6. A Secure Submission System for Online Whistleblowing Platforms

Author

Roth, Volker, Güldenring, Benjamin, Rieffel, Eleanor, Dietrich, Sven, and Ries, Lars

Subjects
Computer Science - Cryptography and Security
Abstract

Whistleblower laws protect individuals who inform the public or an authority about governmental or corporate misconduct. Despite these laws, whistleblowers frequently risk reprisals and sites such as WikiLeaks emerged to provide a level of anonymity to these individuals. However, as countries increase their level of network surveillance and Internet protocol data retention, the mere act of using anonymizing software such as Tor, or accessing a whistleblowing website through an SSL channel might be incriminating enough to lead to investigations and repercussions. As an alternative submission system we propose an online advertising network called AdLeaks. AdLeaks leverages the ubiquity of unsolicited online advertising to provide complete sender unobservability when submitting disclosures. AdLeaks ads compute a random function in a browser and submit the outcome to the AdLeaks infrastructure. Such a whistleblower's browser replaces the output with encrypted information so that the transmission is indistinguishable from that of a regular browser. Its back-end design assures that AdLeaks must process only a fraction of the resulting traffic in order to receive disclosures with high probability. We describe the design of AdLeaks and evaluate its performance through analysis and experimentation., Comment: An abridged version has been accepted for publication in the proceedings of Financial Cryptography and Data Security 2013

Published
2013

7. Bodyweight-adjusted rivaroxaban for children with venous thromboembolism (EINSTEIN-Jr): results from three multicentre, single-arm, phase 2 studies

Author

Monagle, Paul, Robertson, Jeremy, Grangl, Gernot, Male, Christoph, Streif, Werner, Carniero, Jorge, Logetto, Sandra, Brandao, Leonardo, Halton, Jacqueline, Amedro, Pascal, Bonnet, Damien, Beyer-Westendorf, Jan, Dietrich, Sven, Holzhauer, Susanne, Nowak-Göttl, Ulrike, Kallay, Krisztian, Kenet, Gili, Revel-Vilk, Shoshana, Tamary, Hannah, Giordano, Paola, Abbattista, Maria, Artoni, Andrea, Molinari, Angelo C, Saracco, Paola, Simioni, Paolo, Tormene, Daniela, Ono, Hiroshi, Te Loo, Maroeska WM, Van Ommen, Heleen, Veening, Margreet A, Suiker, Monique H, Peters, Marjolein, Samochatova, Elena, Shamardina, Anastasia, Novgorod, Nizhny, Zubarovskaya, Lyudmila, Dasi, Maria A, Elorza, Maria, Santamaria, Amparo, Sánchez-Luna, Manuel, Albisetti, Manuela, Grunt, Sebastian, Kavakli, Kaan, Biss, Tina, Connor, Philip, Williams, Mike, Acharya, Suchitra, Bhat, Rumi, Kearney, Susan, Kumar, Riten, Patel, Kavita, Rajpukar, Madvi, Schwartz, Jeffrey H, Vik, Terry, Wynn, Tung, Yee, Donald L, Young, Guy, Lensing, Anthonie W A, Thelen, Kirstin, Martinelli, Ida, Santamaría, Amparo, Connor, Phillip, Kapsa, Stefanie, Willmann, Stefan, Pap, Akos F, Becka, Michael, Twomey, Teresa, Prins, Martin H, and Kubitza, Dagmar

Published
2019
Full Text
View/download PDF

9. Attacks on tomorrow’s virtual world

Author

Benhabbour, Iliès, primary, Bromberg, Yérom-David, additional, Dacier, Marc, additional, Dietrich, Sven, additional, Rodrigues, Rodrigo Miragaia, additional, and Esteves-Verissimo, Paulo, additional

Published
2023
Full Text
View/download PDF

14. Art Style, Art & Culture International Magazine, no. 7

Author

Christiane Wagner, Elisabeth Günther, Martina Sauer, Petra Leutner, Klaus Schwarzfischer, Stefanie Bräuer, Fabiana Senkpiel, Sarah Ullrich, Katharina Geis, Hans Dieter Huber, Yael Young, Nikolaus Dietrich, Sven Günther

Subjects
GeneralLiterature_MISCELLANEOUS
Abstract

Special Issue on the Material Image. Affordances as a New Approach to Visual Culture Studies. Art Style | Art & Culture International Magazine Editor-in-Chief and Creative Director: Christiane Wagner Co-Editor for this Special Issue: Elisabeth Günther Senior Editor: Martina Sauer For more information about the board, please click onEditorial TeamandArt Style Magazine’s ScientificCommittee Art Style | Art & Culture International Magazineisanopenaccess,biannual, and peer-reviewed onlinemagazine that aims to bundle cultural diversity.All values of cultures are shown in their varieties of art. Beyond the importance of the medium, form, and context in which art takes its characteristics, we also consider the significance of socio-cultural, historical, and market influence. Thus, there are different forms of visual expression and perception through the media and environment. The images relate to the cultural changes and their time-space significance—the spirit of the time. Hence, it is not only about the image itself and its description but rather its effects on culture, in which reciprocity is involved. For example, a variety of visual narratives—like movies, TV shows, videos, performances, media, digital arts, visual technologies and video game as part of the video’s story, communications design, and also, drawing, painting, photography, dance, theater, literature, sculpture, architecture and design—are discussed in their visual significance as well as in synchronization with music in daily interactions. Moreover, this magazine handles images and sounds concerning the meaning in culture due to the influence of ideologies, trends, or functions for informational purposes as forms of communication beyond the significance of art and its issues related to the socio-cultural and political context. However, the significance of art and all kinds of aesthetic experiences represent a transformation for our nature as human beings. In general, questions concerning the meaning of art are frequently linked to the process of perception and imagination. This process can be understood as an aesthetic experience in art, media, and fields such as motion pictures, music, and many other creative works and events that contribute to one’s knowledge, opinions, or skills. Accordingly, examining the digital technologies, motion picture, sound recording, broadcasting industries, and its social impact, Art Style Magazine focuses on the myriad meanings of art to become aware of their effects on culture as well as their communication dynamics.

Published
2021
Full Text
View/download PDF

15. WECSR Preface

Author

Dietrich, Sven, Hutchison, David, editor, Kanade, Takeo, editor, Kittler, Josef, editor, Kleinberg, Jon M., editor, Mattern, Friedemann, editor, Mitchell, John C., editor, Naor, Moni, editor, Nierstrasz, Oscar, editor, Pandu Rangan, C., editor, Steffen, Bernhard, editor, Sudan, Madhu, editor, Terzopoulos, Demetri, editor, Tygar, Doug, editor, Vardi, Moshe Y., editor, Weikum, Gerhard, editor, Sion, Radu, editor, Curtmola, Reza, editor, Dietrich, Sven, editor, Kiayias, Aggelos, editor, Miret, Josep M., editor, Sako, Kazue, editor, and Sebé, Francesc, editor

Published
2010
Full Text
View/download PDF

16. Erratum to: Financial Cryptography and Data Security

Author

Dietrich, Sven, Dhamija, Rachna, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Nierstrasz, Oscar, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Sudan, Madhu, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Vardi, Moshe Y., Series editor, Weikum, Gerhard, Series editor, Dietrich, Sven, editor, and Dhamija, Rachna, editor

Published
2007
Full Text
View/download PDF

20. Network Attack Detection and Defense (Dagstuhl Seminar 16361)

Author

Dacier, Marc C., Dietrich, Sven, Kargl, Frank, and König, Hartmut

Subjects
000 Computer science, knowledge, general works, Computer Science
Abstract

This report documents the program and the outcomes of Dagstuhl Seminar 16361 "Network Attack Detection and Defense: Security Challenges and Opportunities of Software-Defined Networking". Software-defined networking (SDN) has attracted a great attention both in industry and academia since the beginning of the decade. This attention keeps undiminished. Security-related aspects of software-defined networking have only been considered more recently. Opinions differ widely. The main objective of the seminar was to discuss the various contrary facets of SDN security. The seminar continued the series of Dagstuhl events Network Attack Detection and Defense held in 2008, 2012, and 2014. The objectives of the seminar were threefold, namely (1) to discuss the security challenges of SDN, (2) to debate strategies to monitor and protect SDN-enabled networks, and (3) to propose methods and strategies to leverage on the flexibility brought by SDN for designing new security mechanisms. At the seminar, which brought together participants from academia and industry, we discussed the advantages and disadvantages of using software-defined networks from the security point of view. We agreed that SDN provides new possibilities to better secure networks, but also offers a number of serious security problems which require further research. The outcome of these discussions and the proposed research directions are presented in this report.

Published
2017
Full Text
View/download PDF

23. Network Attack Detection and Defense (Dagstuhl Seminar 16361)

Author

Marc C. Dacier and Sven Dietrich and Frank Kargl and Hartmut König, Dacier, Marc C., Dietrich, Sven, Kargl, Frank, König, Hartmut, Marc C. Dacier and Sven Dietrich and Frank Kargl and Hartmut König, Dacier, Marc C., Dietrich, Sven, Kargl, Frank, and König, Hartmut

Abstract

This report documents the program and the outcomes of Dagstuhl Seminar 16361 "Network Attack Detection and Defense: Security Challenges and Opportunities of Software-Defined Networking". Software-defined networking (SDN) has attracted a great attention both in industry and academia since the beginning of the decade. This attention keeps undiminished. Security-related aspects of software-defined networking have only been considered more recently. Opinions differ widely. The main objective of the seminar was to discuss the various contrary facets of SDN security. The seminar continued the series of Dagstuhl events Network Attack Detection and Defense held in 2008, 2012, and 2014. The objectives of the seminar were threefold, namely (1) to discuss the security challenges of SDN, (2) to debate strategies to monitor and protect SDN-enabled networks, and (3) to propose methods and strategies to leverage on the flexibility brought by SDN for designing new security mechanisms. At the seminar, which brought together participants from academia and industry, we discussed the advantages and disadvantages of using software-defined networks from the security point of view. We agreed that SDN provides new possibilities to better secure networks, but also offers a number of serious security problems which require further research. The outcome of these discussions and the proposed research directions are presented in this report.

Published
2017
Full Text
View/download PDF

27. Ethics in Data Sharing (Dagstuhl Seminar 14052)

Author

Cohen, Julie E., Dietrich, Sven, Pras, Aiko, Zuck, Lenore D., and Hildebrand Mireille

Subjects
000 Computer science, knowledge, general works, Computer Science
Abstract

This report documents the program and the outcomes of Dagstuhl Seminar 14052 "Ethics in Data Sharing". The seminar brought together computer scientists, an ethicist and legal scholars to discuss the topic of "ethics in data sharing."

Published
2014
Full Text
View/download PDF

29. Ethics in Data Sharing (Dagstuhl Seminar 14052)

Author

Julie E. Cohen and Sven Dietrich and Aiko Pras and Lenore D. Zuck and Mireille Hildebrand, Cohen, Julie E., Dietrich, Sven, Pras, Aiko, Zuck, Lenore D., Hildebrand Mireille, Julie E. Cohen and Sven Dietrich and Aiko Pras and Lenore D. Zuck and Mireille Hildebrand, Cohen, Julie E., Dietrich, Sven, Pras, Aiko, Zuck, Lenore D., and Hildebrand Mireille

Abstract

This report documents the program and the outcomes of Dagstuhl Seminar 14052 "Ethics in Data Sharing". The seminar brought together computer scientists, an ethicist and legal scholars to discuss the topic of "ethics in data sharing."

Published
2014
Full Text
View/download PDF

30. Results of SEI Independent Research and Development Projects and Report on Emerging Technologies and Technology Trends (FY 2004)

Author

Bergey, John K., Dietrich, Sven, Firesmith, Donald, Forrester, Eileen C., Jordan, Angel, Kazman, Rick, Lewis, Grace A., Lipson, Howard, Mead, Nancy R., Morris, Edwin J., O'Brien, Liam, Siviy, Jeannine M., Smith, Dennis B., and Woody, Carol C.

Subjects
FOS: Computer and information sciences, ComputingMilieux_THECOMPUTINGPROFESSION, 80309 Software Engineering
Abstract

Each year, the Software Engineering Institute (SEI) undertakes several Independent Research and Development (IR&D) projects. These projects serve to (1) support feasibility studies investigating whether further work by the SEI would be of potential benefit, and (2) support further exploratory work to determine whether there is sufficient value in eventually funding the feasibility study work as an SEI initiative. Projects are chosen based on their potential to mature and/or transition software engineering practices, develop information that will help in deciding whether further work is worth funding, and set new directions for SEI work. This report describes the IR&D projects that were conducted during fiscal year 2004 (October 2003 through September 2004). In addition, this report provides information on what the SEI has learned in its role as a technology scout for developments over the past year in the field of software engineering.

Published
2004
Full Text
View/download PDF

32. SEI Independent Research and Development Projects (FY 2003)

Author

Bachmann, Felix, Bass, Len, Carney, David, Dietrich, Sven, Feiler, Peter H., Garcia-Miller, Suzanne, Klein, Mark H., Lattanze, Anthony, McHugh, John, B. Craig Meyers, Morris, Edwin J., Place, Patrick R., Plakosh, Daniel, and Seacord, Robert C.

Subjects
FOS: Computer and information sciences, 80309 Software Engineering
Abstract

Each year, the Software Engineering Institute (SEI) undertakes several Independent Research and Development (IR&D) projects. These projects serve to (a) support feasibility studies investigating whether further work by the SEI would be of potential benefit and (b) support further exploratory work to determine if there is sufficient value in eventually funding the feasibility study work as an SEI initiative. Projects are chosen based on their potential to mature and/or transition software engineering practices, develop information that will help in deciding whether further work is worth funding, and set new directions for SEI work. This report describes the IR&D projects that were conducted during fiscal year 2003 (October 2002 through September 2003).

Published
2003
Full Text
View/download PDF

35. SEI Independent Research and Development Projects

Author

CARNEGIE-MELLON UNIV PITTSBURGH PA SOFTWARE ENGINEERING INST, Bachmann, Felix, Bass, Len, Carney, David, Dietrich, Sven, Feiler, Peter, CARNEGIE-MELLON UNIV PITTSBURGH PA SOFTWARE ENGINEERING INST, Bachmann, Felix, Bass, Len, Carney, David, Dietrich, Sven, and Feiler, Peter

Abstract

Each year, the Software Engineering Institute (SEI) undertakes several Independent Research and Development (IR&D) projects. These projects serve to: (a) support feasibility studies investigating whether further work by the SEI would be of potential benefit and (b) support further exploratory work to determine if there is sufficient value in eventually funding the feasibility study work as an SEI initiative. Projects are chosen based on their potential to mature and/or transition software engineering practices, develop information that will help in deciding whether further work is worth funding, and set new directions for SEI work. This report describes the IR&D projects that were conducted during fiscal year 2003 (October 2002 through September 2003).

Published
2003

44. What Instills Trust? A Qualitative Study of Phishing.

Author

Hutchison, David, Kanade, Takeo, Kittler, Josef, Kleinberg, Jon M., Mattern, Friedemann, Mitchell, John C., Naor, Moni, Nierstrasz, Oscar, Pandu Rangan, C., Steffen, Bernhard, Sudan, Madhu, Terzopoulos, Demetri, Tygar, Doug, Vardi, Moshe Y., Weikum, Gerhard, Dietrich, Sven, Dhamija, Rachna, Jakobsson, Markus, Tsow, Alex, and Shah, Ankur

Abstract

This paper reports the highlights of a user study which gauges reactions to a variety of common "trust indicators" - such as logos, third party endorsements, and padlock icons - over a selection of authentic and phishing stimuli. In the course of the think-aloud protocol, participants revealed different sensitivities to email messages and web pages. Our principal result is the analysis of what makes phishing emails and web pages appear authentic. This is not only of interest from a pure scientific point of view, but can also guide the design of legitimate material to avoid unnecessary risks. A second result of ours are observations of what makes legitimate content appear dubious to consumers. This is a result with obvious applications to online advertising. [ABSTRACT FROM AUTHOR]

Published
2008
Full Text
View/download PDF

45. A Sense of Security in Pervasive Computing—Is the Light on When the Refrigerator Door Is Closed?

Author

Hutchison, David, Kanade, Takeo, Kittler, Josef, Kleinberg, Jon M., Mattern, Friedemann, Mitchell, John C., Naor, Moni, Nierstrasz, Oscar, Pandu Rangan, C., Steffen, Bernhard, Sudan, Madhu, Terzopoulos, Demetri, Tygar, Doug, Vardi, Moshe Y., Weikum, Gerhard, Dietrich, Sven, Dhamija, Rachna, Pagter, Jakob Illeborg, and Petersen, Marianne Graves

Abstract

In this paper, we investigate how existing theoretical contributions on usable security can serve to guide the design of a specific system. We illustrate how going through this theoretically informed, concrete design process, also provides the basis for complementing existing theoretical contributions. The system we have designed is a system taking advantage of pervasive computing technology to offer hotel guests access to their personal, digital materials while in a hotel room. The design is based on two ideas novel to usable security, namely falsification and the singleton invariant.. [ABSTRACT FROM AUTHOR]

Published
2008
Full Text
View/download PDF

46. Low-Cost Manufacturing, Usability, and Security: An Analysis of Bluetooth Simple Pairing and Wi-Fi Protected Setup.

Author

Hutchison, David, Kanade, Takeo, Kittler, Josef, Kleinberg, Jon M., Mattern, Friedemann, Mitchell, John C., Naor, Moni, Nierstrasz, Oscar, Pandu Rangan, C., Steffen, Bernhard, Sudan, Madhu, Terzopoulos, Demetri, Tygar, Doug, Vardi, Moshe Y., Weikum, Gerhard, Dietrich, Sven, Dhamija, Rachna, Kuo, Cynthia, Walker, Jesse, and Perrig, Adrian

Abstract

Bluetooth Simple Pairing and Wi-Fi Protected Setup specify mechanisms for exchanging authentication credentials in wireless networks. Both Simple Pairing and Protected Setup support multiple setup mechanisms, which increases security risks and hurts the user experience. To improve the security and usability of these specifications, we suggest defining a common baseline for hardware features and a consistent, interoperable user experience across devices. [ABSTRACT FROM AUTHOR]

Published
2008
Full Text
View/download PDF

47. Mental Models of Security Risks.

Author

Hutchison, David, Kanade, Takeo, Kittler, Josef, Kleinberg, Jon M., Mattern, Friedemann, Mitchell, John C., Naor, Moni, Nierstrasz, Oscar, Pandu Rangan, C., Steffen, Bernhard, Sudan, Madhu, Terzopoulos, Demetri, Tygar, Doug, Vardi, Moshe Y., Weikum, Gerhard, Dietrich, Sven, Dhamija, Rachna, Asgharpour, Farzaneh, Liu, Debin, and Camp, L. Jean

Abstract

In computer security, risk communication refers to informing computer users about the likelihood and magnitude of a threat. Efficacy of risk communication depends not only on the nature of the risk, but also on the alignment between the conceptual model embedded in the risk communication and the user's mental model of the risk. The gap between the mental models of security experts and non-experts could lead to ineffective risk communication. Our research shows that for a variety of the security risks self-identified security experts and non-experts have different mental models. We propose that the design of the risk communication methods should be based on the non-expert mental models. [ABSTRACT FROM AUTHOR]

Published
2008
Full Text
View/download PDF

48. Usability Analysis of Secure Pairing Methods.

Author

Hutchison, David, Kanade, Takeo, Kittler, Josef, Kleinberg, Jon M., Mattern, Friedemann, Mitchell, John C., Naor, Moni, Nierstrasz, Oscar, Pandu Rangan, C., Steffen, Bernhard, Sudan, Madhu, Terzopoulos, Demetri, Tygar, Doug, Vardi, Moshe Y., Weikum, Gerhard, Dietrich, Sven, Dhamija, Rachna, Uzun, Ersin, Karvonen, Kristiina, and Asokan, N.

Abstract

Setting up security associations between end-user devices is a challenging task when it needs to be done by ordinary users. The increasing popularity of powerful personal electronics with wireless communication abilities has made the problem more urgent than ever before. During the last few years, several solutions have appeared in the research literature. Several standardization bodies have also been working on improved setup procedures. All these protocols provide certain level of security, but several new questions arise, such as "how to implement this protocol so that it is easy to use?" and "is it still secure when used by a non-technical person?" In this paper, we attempt to answer these questions by carrying out a comparative usability evaluation of selected methods to derive some insights into the usability and security of these methods as well as strategies for implementing them. [ABSTRACT FROM AUTHOR]

Published
2008
Full Text
View/download PDF

49. Empirical Studies on Software Notices to Inform Policy Makers and Usability Designers.

Author

Hutchison, David, Kanade, Takeo, Kittler, Josef, Kleinberg, Jon M., Mattern, Friedemann, Mitchell, John C., Naor, Moni, Nierstrasz, Oscar, Pandu Rangan, C., Steffen, Bernhard, Sudan, Madhu, Terzopoulos, Demetri, Tygar, Doug, Vardi, Moshe Y., Weikum, Gerhard, Dietrich, Sven, Dhamija, Rachna, Grossklags, Jens, and Good, Nathan

Abstract

We evaluate the usability of End User License Agreements (EULAs) of popular consumer programs. Results from an empirical evaluation of 50 popular programs show the lack of accessibility and readability of notices. Our data from a recent study with 64 users involved in installation tasks confirms the public perception that notice to and consent by the user is not achieved. [ABSTRACT FROM AUTHOR]

Published
2008
Full Text
View/download PDF

50. Improving Usability by Adding Security to Video Conferencing Systems.

Author

Hutchison, David, Kanade, Takeo, Kittler, Josef, Kleinberg, Jon M., Mattern, Friedemann, Mitchell, John C., Naor, Moni, Nierstrasz, Oscar, Pandu Rangan, C., Steffen, Bernhard, Sudan, Madhu, Terzopoulos, Demetri, Tygar, Doug, Vardi, Moshe Y., Weikum, Gerhard, Dietrich, Sven, Dhamija, Rachna, Mitchell, April Slayden, and Karp, Alan H.

Abstract

Many video conferencing solutions exist in the market today and many new ones are being introduced. In striving to provide an experience to users as close to "being there" as possible, two major design issues must be considered: security and ease of use. In this paper, we describe a method for designing a "One Space" video conferencing user interface that reveals security information to the users while reducing the complexity of the user experience. [ABSTRACT FROM AUTHOR]

Published
2008
Full Text
View/download PDF

Catalog

Books, media, physical & digital resources
See catalog results