Phishing in organizations: Findings from a large-scale and long-term study
In this paper, we present findings from a largescale and long-term phishing experiment that
we conducted in collaboration with a partner company. Our experiment ran for 15 months …
we conducted in collaboration with a partner company. Our experiment ran for 15 months …
An investigation of phishing awareness and education over time: When and how to best remind users
Security awareness and education programmes are rolled out in more and more
organisations. However, their effectiveness over time and, correspondingly, appropriate …
organisations. However, their effectiveness over time and, correspondingly, appropriate …
[图书][B] Longitudinal studies in HCI research: a review of CHI publications from 1982–2019
Longitudinal studies in HCI research have the potential to increase our understanding of
how human–technology interactions evolve over time. Potentially, longitudinal studies …
how human–technology interactions evolve over time. Potentially, longitudinal studies …
Habituation effects in computer security warning
Security warning is a form of computer dialog communication that is used to inform the users
on the risks of allowing random applications to run on a computer system. Accordingly, it is …
on the risks of allowing random applications to run on a computer system. Accordingly, it is …
Developers deserve security warnings, too: On the effect of integrated security advice on cryptographic {API} misuse
Cryptographic API misuse is responsible for a large number of software vulnerabilities. In
many cases developers are overburdened by the complex set of programming choices and …
many cases developers are overburdened by the complex set of programming choices and …
Predicting impending exposure to malicious content from user behavior
M Sharif, J Urakawa, N Christin, A Kubota… - Proceedings of the 2018 …, 2018 - dl.acm.org
Many computer-security defenses are reactive---they operate only when security incidents
take place, or immediately thereafter. Recent efforts have attempted to predict security …
take place, or immediately thereafter. Recent efforts have attempted to predict security …
Reducing risk habituation to struck-by hazards in a road construction environment using virtual reality behavioral intervention
Repeated exposure to hazards in road construction work zones often generates worker
habituation to risks associated with those hazards, a key causal factor in workplace …
habituation to risks associated with those hazards, a key causal factor in workplace …
The security & privacy acceptance framework (spaf)
How can we encourage end-user acceptance of expert recommended cybersecurity and
privacy (S&P) behaviors? We review prior art in human-centered S&P and identified three …
privacy (S&P) behaviors? We review prior art in human-centered S&P and identified three …
Seeing is not believing: a nuanced view of misinformation warning efficacy on video-sharing social media platforms
C Guo, N Zheng, C Guo - Proceedings of the ACM on Human-Computer …, 2023 - dl.acm.org
Misinformation warnings have become the de facto solution for fighting fake news online.
Our study brings attention to the challenge of developing effective misinformation warnings …
Our study brings attention to the challenge of developing effective misinformation warnings …
The framework of security-enhancing friction: How UX can help users behave more securely
A growing body of research in the usable privacy and security community addresses the
question of how to best influence user behavior to reduce risk-taking. We propose to …
question of how to best influence user behavior to reduce risk-taking. We propose to …