Usability of Decentralized Authorization Systems - A Comparative Study

Liimatainen, Sanna

doi:10.1109/hicss.2005.650

Cited by 6 publications

(4 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Al Abdulwahid, Clarke, Stengel, Furnell, and Reich (2015) undertook a survey of users where they found that users systematically did not adequately protect themselves, perhaps because of the inconvenience of the technology. Liimatainen (2005), in a study to search for usability problems of decentralized authorization systems, identifies various usability problems within systems security context and they include "authorization of entities, definition of a security policy for a resource, revocation of rights, checking validity of a set of credentials, privacy of users, and distinguishing trusted channels. Whitten and Tygar (1999) present that a security system is usable if, apart from other aspects, its users are aware of the security risks and know how to perform the necessary tasks.…”

Section: Literature Reviewmentioning

confidence: 99%

Deciding between information security and usability: Developing value based objectives

Dhillon

Oliveira

Susarapu

et al. 2016

Computers in Human Behavior

View full text Add to dashboard Cite

Section: Literature Reviewmentioning

confidence: 99%

Deciding between information security and usability: Developing value based objectives

Dhillon

Oliveira

Susarapu

et al. 2016

Computers in Human Behavior

View full text Add to dashboard Cite

“…There have been usability studies that used both methods as well (e.g., Liimatainen, 2005; Ackad, Collins, & Kay, 2010). It has been suggested that a combination of different techniques is preferred for evaluating the healthcare technologies (Jaspers, 2009).…”

Section: Related Workmentioning

confidence: 99%

Design and evaluation of web interfaces for informal care providers in senior monitoring

Xiao

Yan

Emery

2013

Proc of Assoc for Info

View full text Add to dashboard Cite

It has been recognized that most seniors prefer to age in a place with familiar surroundings until their health makes this impossible. In an attempt to address the aging phenomenon, as well as recognize seniors' preference, we worked with a Canada-based company that develops a sensor-based home monitoring system for people to monitor the home activities of independently living seniors. Our role was to develop web interfaces that present sensor data to the intended web users -the seniors' informal care providers (e.g., their close friends or family members). In this paper, we present the information design and the web interface prototypes, and report the results of our formative evaluations through cognitive walkthrough and heuristic evaluation methods. The common problems discovered in both methods were problematic notification mechanism, inconsistency, background and layout. Each method also detected usability issues that the other did not. Our work adds more empirical evidence to the importance of combining evaluation methods in a study. The experiences in this study also helped us reflect on approaches and strategies when working with industry partners. Keywords

show abstract

“…SPKI (Liimatainen, 2005) is an authorization certificate system similar to AC. But, unlike AC, it does not have any centralized CA to whom all must trust.…”

Section: Spkimentioning

confidence: 99%

Securing Web Services Using Identity-Based Encryption (Ibe)

Haaland¹,

Rong²

2006

Proceedings of the International Conference on Security and Cryptography

View full text Add to dashboard Cite

There is obvious need in cooperation between organizations. A recent trend is cooperation online, which result in the need of facilitating and managing cross-domain access to information and applications. It is important to utilize open standards that leverage existing technologies instead of replacing them. WS-Security, emitted by OASIS, defines standards on how to encode security tokens. In this paper we look at the use of Identity-based Encryption to leverage the exchange of security tokens, and how it can be implemented with WS-Security. Identity-based encryption offers, compared to the more conventional PKI, some additional advantages. For instance: databases maintaining public-key certificates are now longer necessary, this simplify key management, saves space, and eliminate the threat of attacks on these databases. It is also more suitable to grant collective access to groups, and is therefore suited for role based access control. We do not suggest Identity-based encryption as a replacement, but rather a complementary.

show abstract

Usability of Decentralized Authorization Systems - A Comparative Study

Cited by 6 publications

References 8 publications

Deciding between information security and usability: Developing value based objectives

Deciding between information security and usability: Developing value based objectives

Design and evaluation of web interfaces for informal care providers in senior monitoring

Securing Web Services Using Identity-Based Encryption (Ibe)

Contact Info

Product

Resources

About