Workshop on Usable Security and Privacy (USEC) 2019

08:00 - 19:00

Registration

Kon Tiki Ballroom Foyer

08:30 - 10:00

Session 1: Welcome and Keynote

Boardroom

• Welcome to USEC

  Mary Theofanos and Yasemin Acar
• Keynote: Usable Security: Happy 20th Birthday! Time to grow up.

  Angela Sasse

  Abstract

  Prof. Angela Sasse will reflect on what knowledge can be gathered from the research that has been published on Usable Security and Privacy, and what tangible changes this knowledge has made to user experience of security. She will review how usable security and privacy has often been misunderstood as a path to make users adhere to security and privacy rules that experts deem necessary, which explains why user sentiments towards security remains largely negative. However, she is optimistic that user-centered design will help understand user requirements for security and identify their preferred ways of achieving it.

10:00 - 10:30

Morning Workshop Break

Entire Upstairs Foyer

10:30 - 12:00

Session 2: Human-centred security

Boardroom

• Replication: Do We Snooze If We Can't Lose? Modelling Risk with Incentives in Habituation User Studies

  Karoline Busse (University of Bonn); Dominik Wermke (Leibniz University Hannover); Sabrina Amft (University of Bonn); Sascha Fahl (Leibniz University Hannover); Emanuel von Zezschwitz, Matthew Smith (University of Bonn)

  Paper
• Security When it is Welcome: Exploring Device Purchase as an Opportune Moment for Security Behavior Change

  Simon Parkin (University College London); Elissa M. Redmiles (University of Maryland); Lynne Coventry (Northumbria University); M. Angela Sasse (Ruhr University Bochum and University College London)

  Paper
• Cybercrime Investigators are Users Too! Understanding the Socio-Technical Challenges Faced by Law Enforcement

  Mariam Nouh (University of Oxford); Jason R. C. Nurse (University of Kent); Helena Webb, Michael Goldsmith (University of Oxford)

  Paper
• A Phish Scale: Rating Human Phishing Message Detection Difficulty

  Michelle P. Steves, Kristen K. Greene, Mary F. Theofanos (National Institute of Standards and Technology)

  Paper
• In Control with no Control: Perceptions and Reality of Windows 10 Home Edition Update Features

  Jason Morris, Ingolf Becker, Simon Parkin (University College London)

  Paper

12:00 - 12:30

Panel: Human-centred security

Boardroom

12:30 - 13:30

Workshop Lunch

Rousseau Center

13:30 - 14:30

Session 3: Privacy and Security

Boardroom

• Does This App Respect My Privacy? Design and Evaluation of Information Materials Supporting Privacy-Related Decisions of Smartphone Users

  Oksana Kulyk (Karlsruhe Institute of Technology); Paul Gerber, Karola Marky, Christopher Beckmann (Technische Universität Darmstadt); Melanie Volkamer (Karlsruhe Institute of Technology)

  Paper
• Will They Share? Predicting Location Sharing Behaviors of Smartphone Users through Self-Reflection on Past Privacy Behaviors

  Muhammad Irtaza Safi, Abhiditya Jha (University of Central Florida); Malak Eihab Aly (New York University); Xinru Page (Bentley University); Sameer Patil (Indiana University); Pamela Wisniewski (University of Central Florida)

  Paper
• Designing a Mobile App to Support Social Processes for Privacy and Security Decisions

  Zaina Aljallad (University of Central Florida); Wentao Guo (Pomona College); Chhaya Chouhan, Christy Laperriere (University of Central Florida); Jess Kropczynski (University of Cincinnati); Pamela Wisnewski (University of Central Florida); Heather Lipford (University of North Carolina at Charlotte)

  Paper
• A First Look at the Usability of OpenVAS Vulnerability Scanner

  M. Uğur Aksu, Enes Altuncu, Kemal Bicakci (TOBB University of Economics and Technology)

  Paper

14:30 - 15:00

Panel: Privacy and Security

Boardroom

15:00 - 15:30

Afternoon Workshop Break

Entire Upstairs Foyer

15:30 - 17:00

Session 4: Authentication

Boardroom

• Work in Progress: On the In-Accuracy and Influence of Android Pattern Strength Meters

  Maximilian Golla, Jan Rimkus (Ruhr University Bochum); Adam J. Aviv (United States Naval Academy); Markus Dürmuth (Ruhr University Bochum)

  Paper
• Stop to Unlock: Improving the Security of Android Unlock Patterns

  Alexander Suchan (SBA Research); Emanuel von Zezschwitz (Usable Security Methods Group, University of Bonn, Bonn, Germany); Katharina Krombholz (CISPA Helmholtz Center for Information Security)

  Paper
• Continuous Smartphone Authentication using Wristbands

  Shrirang Mare (University of Washington); Reza Rawassizadeh (University of Rochester); Ronald Peterson, David Kotz (Dartmouth College)

  Paper
• Work in Progress: A Comparative Long-Term Study of Fallback Authentication

  Philipp Markert, Maximilian Golla (Ruhr University Bochum); Elizabeth Stobert (National Research Council of Canada); Markus Dürmuth (Ruhr University Bochum)

  Paper
• Case Study – Exploring Children’s Password Knowledge and Practices

  Yee-Yin Choong, Mary Theofanos (NIST); Karen Renaud, Suzanne Prior (Abertay University)

  Paper

17:00 - 17:30

Panel: Authentication

Boardroom

17:30 -

Closing remarks and outlook

Boardroom

18:00 - 19:00

Welcome Reception

Boardroom with Foyer