Papers     Last modified: 10/19/04 10:59:21 AM

S.W. Smith.
"Humans in the Loop: Human-Computer Interaction and Security"
IEEE Security and Privacy..
1(3). May/June 2003.


The security field suffers from an endemic problem: despite our best efforts, the current infrastructure is continually full of security vulnerabilities. The systems that comprise this infrastructure also are full of boundaries and interfaces where humans and systems must interact: most secure systems exist to serve human users, carry out, human-oriented processes, and are designed and built by humans.

From the perspective of the human-computer interaction (HCI) community, many of these interfaces do not reflect good thinking on how to make them easy to use in a manner that results in security. From the perspective of the security community, many widespread security problems arguably might stem from bad interaction between humans and systems.


PDF of draft

See Also

"Effective PKI Requires Effective HCI," 2003

Back to home page Maintained by Sean Smith,