{"id":"https://openalex.org/W4404567591","doi":"https://doi.org/10.1145/3688459.3688471","title":"Usability Study of Security Features in Programmable Logic Controllers","display_name":"Usability Study of Security Features in Programmable Logic Controllers","publication_year":2024,"publication_date":"2024-09-30","ids":{"openalex":"https://openalex.org/W4404567591","doi":"https://doi.org/10.1145/3688459.3688471"},"language":"en","primary_location":{"id":"doi:10.1145/3688459.3688471","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3688459.3688471","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2024 European Symposium on Usable Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1145/3688459.3688471","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5020666431","display_name":"Karen Li","orcid":"https://orcid.org/0009-0000-0428-1602"},"institutions":[{"id":"https://openalex.org/I36234482","display_name":"University of Bristol","ror":"https://ror.org/0524sp257","country_code":"GB","type":"education","lineage":["https://openalex.org/I36234482"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Karen Li","raw_affiliation_strings":["University of Bristol, Bristol, United Kingdom,"],"raw_orcid":"https://orcid.org/0009-0000-0428-1602","affiliations":[{"raw_affiliation_string":"University of Bristol, Bristol, United Kingdom,","institution_ids":["https://openalex.org/I36234482"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5090234988","display_name":"Kopo M. Ramokapane","orcid":"https://orcid.org/0000-0001-8420-3929"},"institutions":[{"id":"https://openalex.org/I36234482","display_name":"University of Bristol","ror":"https://ror.org/0524sp257","country_code":"GB","type":"education","lineage":["https://openalex.org/I36234482"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Kopo Ramokapane","raw_affiliation_strings":["University of Bristol, Bristol, United Kingdom,"],"raw_orcid":"https://orcid.org/0000-0001-8420-3929","affiliations":[{"raw_affiliation_string":"University of Bristol, Bristol, United Kingdom,","institution_ids":["https://openalex.org/I36234482"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5034962802","display_name":"Awais Rashid","orcid":"https://orcid.org/0000-0002-0109-1341"},"institutions":[{"id":"https://openalex.org/I36234482","display_name":"University of Bristol","ror":"https://ror.org/0524sp257","country_code":"GB","type":"education","lineage":["https://openalex.org/I36234482"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Awais Rashid","raw_affiliation_strings":["University of Bristol, Bristol, United Kingdom,"],"raw_orcid":"https://orcid.org/0000-0002-0109-1341","affiliations":[{"raw_affiliation_string":"University of Bristol, Bristol, United Kingdom,","institution_ids":["https://openalex.org/I36234482"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.21537972,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"200","last_page":"219"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9988999962806702,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7683407664299011},{"id":"https://openalex.org/keywords/usability","display_name":"Usability","score":0.7210919260978699},{"id":"https://openalex.org/keywords/programmable-logic-controller","display_name":"Programmable logic controller","score":0.5194075107574463},{"id":"https://openalex.org/keywords/programmable-logic-device","display_name":"Programmable logic device","score":0.42052754759788513},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.3962287902832031},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3347930908203125},{"id":"https://openalex.org/keywords/human\u2013computer-interaction","display_name":"Human\u2013computer interaction","score":0.2996196746826172},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.20225942134857178}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7683407664299011},{"id":"https://openalex.org/C170130773","wikidata":"https://www.wikidata.org/wiki/Q216378","display_name":"Usability","level":2,"score":0.7210919260978699},{"id":"https://openalex.org/C37374048","wikidata":"https://www.wikidata.org/wiki/Q188674","display_name":"Programmable logic controller","level":2,"score":0.5194075107574463},{"id":"https://openalex.org/C206274596","wikidata":"https://www.wikidata.org/wiki/Q1063837","display_name":"Programmable logic device","level":2,"score":0.42052754759788513},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.3962287902832031},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3347930908203125},{"id":"https://openalex.org/C107457646","wikidata":"https://www.wikidata.org/wiki/Q207434","display_name":"Human\u2013computer interaction","level":1,"score":0.2996196746826172},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.20225942134857178}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/3688459.3688471","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3688459.3688471","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2024 European Symposium on Usable Security","raw_type":"proceedings-article"},{"id":"pmh:doi:10.48550/arxiv.2208.02500","is_oa":true,"landing_page_url":null,"pdf_url":null,"source":{"id":"https://openalex.org/S4406922384","display_name":"Open MIND","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"publisher-specific-oa","license_id":"https://openalex.org/licenses/publisher-specific-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"Article"}],"best_oa_location":{"id":"doi:10.1145/3688459.3688471","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3688459.3688471","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2024 European Symposium on Usable Security","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[],"funders":[{"id":"https://openalex.org/F4320312768","display_name":"GCHQ","ror":"https://ror.org/052mq0r90"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":45,"referenced_works":["https://openalex.org/W18112494","https://openalex.org/W81976031","https://openalex.org/W656686598","https://openalex.org/W1553347404","https://openalex.org/W1871925091","https://openalex.org/W1971295515","https://openalex.org/W1979290264","https://openalex.org/W1983051294","https://openalex.org/W1988412229","https://openalex.org/W2002388641","https://openalex.org/W2011258666","https://openalex.org/W2016201542","https://openalex.org/W2026843999","https://openalex.org/W2028171449","https://openalex.org/W2095881341","https://openalex.org/W2099889974","https://openalex.org/W2111404412","https://openalex.org/W2112136322","https://openalex.org/W2122025605","https://openalex.org/W2133674686","https://openalex.org/W2139179587","https://openalex.org/W2330650066","https://openalex.org/W2394619600","https://openalex.org/W2540359925","https://openalex.org/W2612071714","https://openalex.org/W2770799760","https://openalex.org/W2786284130","https://openalex.org/W2797893620","https://openalex.org/W2909986196","https://openalex.org/W2941866758","https://openalex.org/W2948592548","https://openalex.org/W2980658844","https://openalex.org/W2988151697","https://openalex.org/W3009315908","https://openalex.org/W3042691215","https://openalex.org/W3186700130","https://openalex.org/W4200514777","https://openalex.org/W4205428528","https://openalex.org/W4230591936","https://openalex.org/W4241491750","https://openalex.org/W4243559508","https://openalex.org/W4285259005","https://openalex.org/W4299301436","https://openalex.org/W4387628515","https://openalex.org/W4400206585"],"related_works":["https://openalex.org/W2794067684","https://openalex.org/W2358591189","https://openalex.org/W2099783531","https://openalex.org/W616788921","https://openalex.org/W4391047221","https://openalex.org/W2349971688","https://openalex.org/W1440679304","https://openalex.org/W2948956395","https://openalex.org/W2353871835","https://openalex.org/W4205515025"],"abstract_inverted_index":{"Programmable":[0],"Logic":[1],"Controllers":[2],"(PLCs)":[3],"drive":[4],"industrial":[5,188],"processes":[6],"critical":[7],"to":[8,32,48,156,166,183],"society,":[9],"for":[10],"example,":[11],"water":[12],"treatment":[13],"and":[14,17,90,103,111,123,144,150,172],"distribution,":[15],"electricity":[16],"fuel":[18],"networks.":[19],"Search":[20],"engines,":[21],"e.g.,":[22,148],"Shodan,":[23],"have":[24],"highlighted":[25],"that":[26,116],"PLCs":[27],"are":[28],"often":[29],"left":[30],"exposed":[31],"the":[33,37,41,49,69,82,97,117,141,157,167],"Internet,":[34],"one":[35],"of":[36,43,61,71,99,119,131,152,160,169],"main":[38],"reasons":[39],"being":[40],"misconfigurations":[42,55],"security":[44,62,74,106,133,142,186],"settings.":[45],"This":[46],"leads":[47],"question":[50],"-":[51],"why":[52],"do":[53],"these":[54,177],"occur":[56],"and,":[57],"specifically,":[58],"whether":[59],"usability":[60,70,98,173],"controls":[63,143],"plays":[64],"a":[65,86],"part.":[66],"To":[67],"date,":[68],"configuring":[72,132],"PLC":[73,100],"mechanisms":[75,107],"has":[76],"not":[77],"been":[78],"studied.":[79],"We":[80,95,114],"present":[81],"first":[83],"investigation":[84],"through":[85],"task":[87],"based":[88],"study":[89],"subsequent":[91],"semi-structured":[92],"interviews":[93],"(N=19).":[94],"explore":[96],"connection":[101],"configurations":[102],"two":[104],"key":[105],"(i.e.,":[108],"access":[109],"levels":[110],"user":[112],"administration).":[113],"find":[115],"use":[118],"unfamiliar":[120],"labels,":[121],"layouts":[122],"misleading":[124],"terminology":[125],"exacerbates":[126],"an":[127],"already":[128],"complex":[129],"process":[130],"mechanisms.":[134],"Our":[135],"results":[136],"uncover":[137],"various":[138],"misperceptions":[139],"about":[140],"how":[145],"design":[146,181],"constraints,":[147],"safety":[149],"lack":[151],"regular":[153],"updates":[154],"due":[155],"long-term":[158],"nature":[159],"such":[161],"systems,":[162],"provide":[163,180],"significant":[164],"challenges":[165],"realization":[168],"modern":[170],"HCI":[171],"principles.":[174],"Based":[175],"on":[176],"findings,":[178],"we":[179],"recommendations":[182],"bring":[184],"usable":[185],"in":[187],"settings":[189],"at":[190],"par":[191],"with":[192],"its":[193],"IT":[194],"counterpart.":[195]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}