{"id":"https://openalex.org/W2063539698","doi":"https://doi.org/10.1145/1600176.1600178","title":"Security and usability","display_name":"Security and usability","publication_year":2008,"publication_date":"2008-07-15","ids":{"openalex":"https://openalex.org/W2063539698","doi":"https://doi.org/10.1145/1600176.1600178","mag":"2063539698"},"language":"en","primary_location":{"id":"doi:10.1145/1600176.1600178","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1600176.1600178","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2007 Workshop on New Security Paradigms","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5055898168","display_name":"Mohammad Mannan","orcid":"https://orcid.org/0000-0002-9630-5858"},"institutions":[{"id":"https://openalex.org/I67031392","display_name":"Carleton University","ror":"https://ror.org/02qtvee93","country_code":"CA","type":"education","lineage":["https://openalex.org/I67031392"]}],"countries":["CA"],"is_corresponding":true,"raw_author_name":"Mohammad Mannan","raw_affiliation_strings":["Carleton University, Ottawa, Ontario, Canada"],"affiliations":[{"raw_affiliation_string":"Carleton University, Ottawa, Ontario, Canada","institution_ids":["https://openalex.org/I67031392"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5011846293","display_name":"Paul C. van Oorschot","orcid":"https://orcid.org/0000-0002-5038-5370"},"institutions":[{"id":"https://openalex.org/I67031392","display_name":"Carleton University","ror":"https://ror.org/02qtvee93","country_code":"CA","type":"education","lineage":["https://openalex.org/I67031392"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"P. C. van Oorschot","raw_affiliation_strings":["Carleton University, Ottawa, Ontario, Canada"],"affiliations":[{"raw_affiliation_string":"Carleton University, Ottawa, Ontario, Canada","institution_ids":["https://openalex.org/I67031392"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5055898168"],"corresponding_institution_ids":["https://openalex.org/I67031392"],"apc_list":null,"apc_paid":null,"fwci":16.9192,"has_fulltext":false,"cited_by_count":73,"citation_normalized_percentile":{"value":0.98895192,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"14"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9975000023841858,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/usability","display_name":"Usability","score":0.7129144668579102},{"id":"https://openalex.org/keywords/internet-privacy","display_name":"Internet privacy","score":0.5603858828544617},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5185873508453369},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.4993159770965576},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4944145679473877},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.4369758367538452},{"id":"https://openalex.org/keywords/work","display_name":"Work (physics)","score":0.4231888949871063},{"id":"https://openalex.org/keywords/human-computer-interaction-in-information-security","display_name":"Human-computer interaction in information security","score":0.41069328784942627},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.30915895104408264},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.24469035863876343},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.2306881546974182},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.19703704118728638},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.10866415500640869}],"concepts":[{"id":"https://openalex.org/C170130773","wikidata":"https://www.wikidata.org/wiki/Q216378","display_name":"Usability","level":2,"score":0.7129144668579102},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.5603858828544617},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5185873508453369},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.4993159770965576},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4944145679473877},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.4369758367538452},{"id":"https://openalex.org/C18762648","wikidata":"https://www.wikidata.org/wiki/Q42213","display_name":"Work (physics)","level":2,"score":0.4231888949871063},{"id":"https://openalex.org/C6353995","wikidata":"https://www.wikidata.org/wiki/Q17027910","display_name":"Human-computer interaction in information security","level":5,"score":0.41069328784942627},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.30915895104408264},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.24469035863876343},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.2306881546974182},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.19703704118728638},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.10866415500640869},{"id":"https://openalex.org/C78519656","wikidata":"https://www.wikidata.org/wiki/Q101333","display_name":"Mechanical engineering","level":1,"score":0.0},{"id":"https://openalex.org/C107457646","wikidata":"https://www.wikidata.org/wiki/Q207434","display_name":"Human\u2013computer interaction","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/1600176.1600178","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1600176.1600178","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2007 Workshop on New Security Paradigms","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[{"id":"https://openalex.org/F4320320994","display_name":"Canada Research Chairs","ror":"https://ror.org/0517h6h17"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":42,"referenced_works":["https://openalex.org/W125192817","https://openalex.org/W215137156","https://openalex.org/W1485200701","https://openalex.org/W1498527206","https://openalex.org/W1498728415","https://openalex.org/W1516597575","https://openalex.org/W1526630818","https://openalex.org/W1534216444","https://openalex.org/W1579627507","https://openalex.org/W1582830784","https://openalex.org/W1812522496","https://openalex.org/W1835112993","https://openalex.org/W1995172125","https://openalex.org/W2016605023","https://openalex.org/W2026843999","https://openalex.org/W2028171449","https://openalex.org/W2029827226","https://openalex.org/W2037202491","https://openalex.org/W2061956102","https://openalex.org/W2062107690","https://openalex.org/W2097759206","https://openalex.org/W2099606640","https://openalex.org/W2104773223","https://openalex.org/W2117882778","https://openalex.org/W2118222422","https://openalex.org/W2119737361","https://openalex.org/W2122742966","https://openalex.org/W2123508202","https://openalex.org/W2131709488","https://openalex.org/W2131906261","https://openalex.org/W2145844491","https://openalex.org/W2146906033","https://openalex.org/W2152309982","https://openalex.org/W2166683285","https://openalex.org/W2171920515","https://openalex.org/W2313988643","https://openalex.org/W2397959131","https://openalex.org/W2476708562","https://openalex.org/W2992621200","https://openalex.org/W2992762951","https://openalex.org/W4240807028","https://openalex.org/W4299301436"],"related_works":["https://openalex.org/W4389670110","https://openalex.org/W2187546663","https://openalex.org/W2429057255","https://openalex.org/W148745890","https://openalex.org/W2611942503","https://openalex.org/W2553295645","https://openalex.org/W1580137006","https://openalex.org/W4283118871","https://openalex.org/W638390775","https://openalex.org/W1984105019"],"abstract_inverted_index":{"Online":[0],"banking":[1,20,29,139,217],"is":[2,249],"one":[3,87],"of":[4,32,60,71,124,143,156,180,240,282],"the":[5,45,81,189,237,276,279],"most":[6,206,215],"sensitive":[7,244],"tasks":[8,274],"performed":[9],"by":[10,65],"general":[11,190],"Internet":[12],"users.":[13,116,204],"Most":[14],"traditional":[15],"banks":[16,35],"now":[17],"offer":[18],"online":[19,28,41,131,138,181,216,245],"services,":[21],"and":[22,73,86,104,112,133,173,229,259],"strongly":[23,152],"encourage":[24],"customers":[25,218],"to":[26,102,177,209,251,271,285],"do":[27,219,286],"with":[30],"'peace":[31],"mind.'":[33],"Although":[34],"heavily":[36,269],"advertise":[37],"an":[38,157],"apparent":[39],"'100%":[40],"security":[42,55,72,94,113,178,212,227,238,258],"guarantee,'":[43],"typically":[44],"fine":[46],"print":[47],"makes":[48,193],"this":[49],"conditional":[50],"on":[51,236,255],"users":[52,101,135,147,267],"fulfilling":[53],"certain":[54],"requirements.":[56,140],"We":[57,75,90,117],"examine":[58],"some":[59,107],"these":[61],"requirements":[62,95,179,228],"as":[63],"set":[64],"major":[66],"Canadian":[67,84],"banks,":[68,85],"in":[69,121,262],"terms":[70],"usability.":[74],"opened":[76],"personal":[77],"checking":[78],"accounts":[79],"at":[80,164],"five":[82],"largest":[83],"online-only":[88],"bank.":[89],"found":[91],"that":[92,106],"many":[93],"are":[96,118,268],"too":[97],"difficult":[98],"for":[99,130,243],"regular":[100,203],"follow,":[103],"believe":[105],"marketing-related":[108],"messages":[109],"about":[110],"safety":[111],"actually":[114],"mislead":[115],"also":[119,233],"interested":[120],"what":[122,166,198],"kind":[123],"computer":[125],"systems":[126,241],"people":[127],"really":[128],"use":[129],"banking,":[132],"whether":[134],"satisfy":[136,210],"common":[137,211],"Our":[141,183],"survey":[142,232],"123":[144],"technically":[145],"advanced":[146],"from":[148,202],"a":[149,253,263],"university":[150],"environment":[151],"supports":[153],"our":[154,194],"view":[155],"emerging":[158],"gap":[159],"between":[160],"banks'":[161,224],"expectations":[162],"(or":[163,221],"least":[165],"their":[167],"written":[168],"customer":[169],"policy":[170],"agreements":[171],"imply)":[172],"users'":[174],"actions":[175],"related":[176],"banking.":[182],"participants,":[184],"being":[185],"more":[186],"security-aware":[187],"than":[188],"population,":[191],"arguably":[192],"results":[195],"best-case":[196],"regarding":[197],"can":[199],"be":[200],"expected":[201],"Yet":[205],"participants":[207],"failed":[208],"requirements,":[213],"implying":[214],"not":[220],"cannot)":[222],"follow":[223],"stated":[225],"end-user":[226],"guidelines.":[230],"The":[231],"sheds":[234],"light":[235],"settings":[239],"used":[242],"transactions.":[246],"This":[247],"work":[248],"intended":[250],"spur":[252],"discussion":[254],"real-world":[256],"system":[257],"user":[260],"responsibilities,":[261],"scenario":[264],"where":[265],"everyday":[266],"encouraged":[270],"perform":[272],"critical":[273],"over":[275],"Internet,":[277],"despite":[278],"continuing":[280],"absence":[281],"appropriate":[283],"tools":[284],"so.":[287]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":4},{"year":2021,"cited_by_count":2},{"year":2020,"cited_by_count":2},{"year":2019,"cited_by_count":1},{"year":2018,"cited_by_count":4},{"year":2017,"cited_by_count":1},{"year":2016,"cited_by_count":7},{"year":2015,"cited_by_count":12},{"year":2014,"cited_by_count":6},{"year":2013,"cited_by_count":8},{"year":2012,"cited_by_count":4}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}