{"id":"https://openalex.org/W1989164935","doi":"https://doi.org/10.1145/2786805.2803195","title":"User-centric security: optimization of the security-usability trade-off","display_name":"User-centric security: optimization of the security-usability trade-off","publication_year":2015,"publication_date":"2015-08-26","ids":{"openalex":"https://openalex.org/W1989164935","doi":"https://doi.org/10.1145/2786805.2803195","mag":"1989164935"},"language":"en","primary_location":{"id":"doi:10.1145/2786805.2803195","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2786805.2803195","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2015 10th Joint Meeting on Foundations of Software Engineering","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5091706714","display_name":"Denis Feth","orcid":"https://orcid.org/0000-0001-7410-0803"},"institutions":[{"id":"https://openalex.org/I88155538","display_name":"Universidad de Navarra","ror":"https://ror.org/02rxc7m23","country_code":"ES","type":"education","lineage":["https://openalex.org/I88155538"]},{"id":"https://openalex.org/I4210098380","display_name":"Fraunhofer Institute for Experimental Software Engineering","ror":"https://ror.org/00r1wdc11","country_code":"DE","type":"facility","lineage":["https://openalex.org/I4210098380","https://openalex.org/I4923324"]}],"countries":["DE","ES"],"is_corresponding":true,"raw_author_name":"Denis Feth","raw_affiliation_strings":["Fraunhofer IESE, Germany","Fraunhofer IESE, Germany#TAB#"],"affiliations":[{"raw_affiliation_string":"Fraunhofer IESE, Germany","institution_ids":["https://openalex.org/I4210098380"]},{"raw_affiliation_string":"Fraunhofer IESE, Germany#TAB#","institution_ids":["https://openalex.org/I88155538"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":1,"corresponding_author_ids":["https://openalex.org/A5091706714"],"corresponding_institution_ids":["https://openalex.org/I4210098380","https://openalex.org/I88155538"],"apc_list":null,"apc_paid":null,"fwci":2.3838,"has_fulltext":false,"cited_by_count":9,"citation_normalized_percentile":{"value":0.90768952,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"1034","last_page":"1037"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9979000091552734,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9979000091552734,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10639","display_name":"Advanced Software Engineering Methodologies","score":0.9958999752998352,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9948999881744385,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/human-computer-interaction-in-information-security","display_name":"Human-computer interaction in information security","score":0.8261740803718567},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7689864039421082},{"id":"https://openalex.org/keywords/usability","display_name":"Usability","score":0.7555513978004456},{"id":"https://openalex.org/keywords/usable","display_name":"USable","score":0.6090242266654968},{"id":"https://openalex.org/keywords/computer-security-model","display_name":"Computer security model","score":0.539828360080719},{"id":"https://openalex.org/keywords/security-testing","display_name":"Security testing","score":0.5325677990913391},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5086818337440491},{"id":"https://openalex.org/keywords/usability-goals","display_name":"Usability goals","score":0.4935685396194458},{"id":"https://openalex.org/keywords/security-through-obscurity","display_name":"Security through obscurity","score":0.47539886832237244},{"id":"https://openalex.org/keywords/interdependence","display_name":"Interdependence","score":0.46007829904556274},{"id":"https://openalex.org/keywords/security-engineering","display_name":"Security engineering","score":0.4582364857196808},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.45179319381713867},{"id":"https://openalex.org/keywords/usability-engineering","display_name":"Usability engineering","score":0.4493017792701721},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.3678697645664215},{"id":"https://openalex.org/keywords/human\u2013computer-interaction","display_name":"Human\u2013computer interaction","score":0.33280450105667114},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.3246779441833496},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.30760759115219116},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.29313766956329346},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.18463540077209473},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.18091076612472534}],"concepts":[{"id":"https://openalex.org/C6353995","wikidata":"https://www.wikidata.org/wiki/Q17027910","display_name":"Human-computer interaction in information security","level":5,"score":0.8261740803718567},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7689864039421082},{"id":"https://openalex.org/C170130773","wikidata":"https://www.wikidata.org/wiki/Q216378","display_name":"Usability","level":2,"score":0.7555513978004456},{"id":"https://openalex.org/C2780615836","wikidata":"https://www.wikidata.org/wiki/Q2471869","display_name":"USable","level":2,"score":0.6090242266654968},{"id":"https://openalex.org/C121822524","wikidata":"https://www.wikidata.org/wiki/Q5157582","display_name":"Computer security model","level":2,"score":0.539828360080719},{"id":"https://openalex.org/C195518309","wikidata":"https://www.wikidata.org/wiki/Q13424265","display_name":"Security testing","level":5,"score":0.5325677990913391},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5086818337440491},{"id":"https://openalex.org/C62993174","wikidata":"https://www.wikidata.org/wiki/Q2928808","display_name":"Usability goals","level":4,"score":0.4935685396194458},{"id":"https://openalex.org/C114869243","wikidata":"https://www.wikidata.org/wiki/Q133735","display_name":"Security through obscurity","level":5,"score":0.47539886832237244},{"id":"https://openalex.org/C185874996","wikidata":"https://www.wikidata.org/wiki/Q269699","display_name":"Interdependence","level":2,"score":0.46007829904556274},{"id":"https://openalex.org/C13159133","wikidata":"https://www.wikidata.org/wiki/Q365674","display_name":"Security engineering","level":5,"score":0.4582364857196808},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.45179319381713867},{"id":"https://openalex.org/C100302975","wikidata":"https://www.wikidata.org/wiki/Q1642623","display_name":"Usability engineering","level":3,"score":0.4493017792701721},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.3678697645664215},{"id":"https://openalex.org/C107457646","wikidata":"https://www.wikidata.org/wiki/Q207434","display_name":"Human\u2013computer interaction","level":1,"score":0.33280450105667114},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.3246779441833496},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.30760759115219116},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.29313766956329346},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.18463540077209473},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.18091076612472534},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/2786805.2803195","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2786805.2803195","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2015 10th Joint Meeting on Foundations of Software Engineering","raw_type":"proceedings-article"},{"id":"pmh:oai:publica.fraunhofer.de:publica/389910","is_oa":false,"landing_page_url":"https://publica.fraunhofer.de/handle/publica/389910","pdf_url":null,"source":{"id":"https://openalex.org/S4306400318","display_name":"Fraunhofer-Publica (Fraunhofer-Gesellschaft)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I4923324","host_organization_name":"Fraunhofer-Gesellschaft","host_organization_lineage":["https://openalex.org/I4923324"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"conference paper"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Partnerships for the goals","score":0.4300000071525574,"id":"https://metadata.un.org/sdg/17"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":18,"referenced_works":["https://openalex.org/W21423625","https://openalex.org/W60907133","https://openalex.org/W591743112","https://openalex.org/W1481692486","https://openalex.org/W1485200701","https://openalex.org/W1530266187","https://openalex.org/W1556735804","https://openalex.org/W1596433543","https://openalex.org/W1972446373","https://openalex.org/W2051779465","https://openalex.org/W2060208845","https://openalex.org/W2108967081","https://openalex.org/W2129926984","https://openalex.org/W2136333541","https://openalex.org/W2311146855","https://openalex.org/W2548786785","https://openalex.org/W3163088064","https://openalex.org/W4285719527"],"related_works":["https://openalex.org/W1811024770","https://openalex.org/W110733897","https://openalex.org/W4230385779","https://openalex.org/W2299494954","https://openalex.org/W2013238834","https://openalex.org/W1190389589","https://openalex.org/W1571028866","https://openalex.org/W787044214","https://openalex.org/W2292825069","https://openalex.org/W2321420494"],"abstract_inverted_index":{"Security":[0,25],"and":[1,6,31,58,63,76,104,106],"usability":[2,57],"are":[3,27,40],"highly":[4],"important":[5],"interdependent":[7],"quality":[8],"attributes":[9],"of":[10,72],"modern":[11],"IT":[12],"systems.":[13],"However,":[14],"it":[15],"is":[16,67,99],"often":[17,32],"hard":[18],"to":[19,82,88,107],"fully":[20],"meet":[21],"both":[22],"in":[23,44,60,80],"practice.":[24,45],"measures":[26],"complex":[28],"by":[29],"nature":[30],"complicate":[33],"work":[34],"flows.":[35],"Vice":[36],"versa,":[37],"insecure":[38],"systems":[39],"typically":[41],"not":[42],"usable":[43],"To":[46],"tackle":[47],"this,":[48],"we":[49],"aim":[50],"at":[51,113],"finding":[52],"the":[53],"best":[54],"balance":[55],"between":[56],"security":[59,84,96,111],"software":[61],"engineering":[62],"administration.":[64],"Our":[65],"methodology":[66],"based":[68],"on":[69,95],"active":[70],"involvement":[71],"large":[73],"user":[74,78,90],"groups":[75],"analyzes":[77],"feedback":[79],"order":[81],"optimize":[83],"mechanisms":[85],"with":[86,92],"respect":[87],"their":[89],"experience,":[91],"a":[93],"focus":[94],"awareness.":[97],"It":[98],"applied":[100],"during":[101],"requirements":[102],"elicitation":[103],"prototyping,":[105],"dynamically":[108],"adapt":[109],"unsuited":[110],"policies":[112],"runtime.":[114]},"counts_by_year":[{"year":2025,"cited_by_count":2},{"year":2024,"cited_by_count":1},{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":1},{"year":2019,"cited_by_count":1},{"year":2018,"cited_by_count":2},{"year":2017,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}