"Should I Worry?" A Cross-Cultural Examination of Account Security Incident Response

2019 IEEE Symposium on Security and Privacy (SP) Pub Date : 2018-08-24 DOI:10.1109/SP.2019.00059

Elissa M. Redmiles

{"title":"\"Should I Worry?\" A Cross-Cultural Examination of Account Security Incident Response","authors":"Elissa M. Redmiles","doi":"10.1109/SP.2019.00059","DOIUrl":null,"url":null,"abstract":"Digital security technology is able to identify and prevent many threats to users accounts. However, some threats remain that, to provide reliable security, require human intervention: e.g., through users paying attention to warning messages or completing secondary authentication procedures. While prior work has broadly explored people's mental models of digital security threats, we know little about users' precise, in-the-moment response process to in-the-wild threats. In this work, we conduct a series of qualitative interviews (n=67) with users who had recently experienced suspicious login incidents on their real Facebook accounts in order to explore this process of account security incident response. We find a common process across participants from five countries -- with differing online and offline cultures -- allowing us to identify areas for future technical development to best support user security. We provide additional insights on the unique nature of incident-response information seeking, known attacker threat models, and lessons learned from a large, cross-cultural qualitative study of digital security.","PeriodicalId":272713,"journal":{"name":"2019 IEEE Symposium on Security and Privacy (SP)","volume":"9 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-08-24","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"34","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 IEEE Symposium on Security and Privacy (SP)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SP.2019.00059","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 34

Abstract

Digital security technology is able to identify and prevent many threats to users accounts. However, some threats remain that, to provide reliable security, require human intervention: e.g., through users paying attention to warning messages or completing secondary authentication procedures. While prior work has broadly explored people's mental models of digital security threats, we know little about users' precise, in-the-moment response process to in-the-wild threats. In this work, we conduct a series of qualitative interviews (n=67) with users who had recently experienced suspicious login incidents on their real Facebook accounts in order to explore this process of account security incident response. We find a common process across participants from five countries -- with differing online and offline cultures -- allowing us to identify areas for future technical development to best support user security. We provide additional insights on the unique nature of incident-response information seeking, known attacker threat models, and lessons learned from a large, cross-cultural qualitative study of digital security.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

“我应该担心吗?”账户安全事件响应的跨文化研究

数字安全技术能够识别和防止对用户帐户的许多威胁。然而，仍然存在一些威胁，为了提供可靠的安全性，需要人工干预:例如，通过用户注意警告消息或完成辅助身份验证过程。虽然之前的工作已经广泛地探索了人们对数字安全威胁的心理模型，但我们对用户对野外威胁的精确、即时反应过程知之甚少。在这项工作中，我们对最近在其真实Facebook账户上经历可疑登录事件的用户进行了一系列定性访谈(n=67)，以探索账户安全事件响应的这一过程。我们在来自五个国家的参与者中发现了一个共同的过程——他们有着不同的线上和线下文化——使我们能够确定未来技术发展的领域，以最好地支持用户安全。我们对事件响应信息搜索的独特性质、已知攻击者威胁模型以及从大型跨文化数字安全定性研究中获得的经验教训提供了额外的见解。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

2019 IEEE Symposium on Security and Privacy (SP)

自引率

0.00%

发文量