PSA for iOS Android users everywhere: it's fine to use biometric authentication to unlock your device. It helps you choose better passwords. So instead of turning fingerprint and face scans off completely, when you find yourself in a less secure environment, simply press the power and volume up buttons simultaneously for a few seconds. On iPhones, your phone will immediately require a password. For Android users, you'll need to click the lockdown button presented on the screen. Then, practice the move a couple times per week each week. #UsableSecurity

🎙️ Understanding #self-hosting and security through 1000 Nextcloud servers

Today's #NextcloudPodcast : Lea Gröber's insights on how the human aspect of your digital infrastructure may be the most important, and yet the least understood.

#usablesecurity #CISPA #dataprivacy

https://nextcloud.com/blog/lea-grober-understanding-self-hosting-and-security-through-nextcloud/

🎙️ Understanding #self-hosting and security through 1000 Nextcloud servers

Today's #NextcloudPodcast : Lea Gröber's insights on how the human aspect of your digital infrastructure may be the most important, and yet the least understood.

#usablesecurity #CISPA #dataprivacy

https://nextcloud.com/blog/lea-grober-understanding-self-hosting-and-security-through-nextcloud/

Very pleased to be presenting a poster and short paper at #CHI2024. This framework adds structure to the literature on social cybersecurity and summarizes findings from an interview study. I'll be there all week if you want to chat! https://blog.corifaklaris.com/2024/05/06/a-framework-for-reasoning-about-social-influences-on-security-and-privacy-adoption-new-for-chi-2024/

#cybersecurity #usablesecurity #socialcybersecurity #hci #ux #humancenteredcybersecurity

EuroUSEC 2024

Only 1 month left to submit to the 2024 European Symposium on Usable Security!

Submit your research and findings to EuroUSEC, a forum for research and discussion on human factors in security and privacy! Discover the perfect synergy of technology, innovation, and tranquillity as EuroUSEC 2024 makes its way to the charming city of Karlstad.

Call for Papers – EuroUSEC 2024 – 30th Sep - 1st Oct 2024, Karlstad, Sweden

https://eurousec24.kau.se/
#cfp #academia #usablesecurity #usec #EuroUSEC

Downside of long encryption passphrases is that I can spend a long time thinking I have forgotten the passphrase before managing to actually type what I originally though the passphrase was in correctly. #UsableSecurity #CryptographicallyStrong

Really insightful chats today with @xchatty of BasisTech and Lee Sult of Sleuth Labs (a brand-new spinoff) about creating security tools for incident investigators and forensic analysts that “just work.” Thanks for visiting UNC Charlotte! #usability #UsableSecurity

Because of my research, I have to add a disclaimer to all emails to faculty and staff: "I promise that I am not phishing you for research with this email."

That's just what a phisher would WANT you to believe, so I also then have to include a statement on my website to verify the information. ;_)

#usablesecurity #cybersecurity

@MildlyAggrievedScientist

This is new in an account serviced by Wells Fargo, in their e-billexpress.com site. There's at least 3 or 4 #soups #usablesecurity papers in this shot. You might enjoy the chaser.

Hello Usable Security and Cybersecurity community,

Phishing awareness survey.

https://www.soscisurvey.de/phishing/

We are seeking participants for a phishing awareness survey.

Purpose:
The purpose of this research study is to understand user's awareness and knowledge on phishing.

Eligibility criteria:
This study is targeting Internet users. To be eligible you must be of legal age in your country of residence. Persons under 14 years old are not eligible.

Possible Benefits
You may not directly benefit from this research; however, we hope that your participation in the study may help improve the current status of phishing awareness training and research in the field.

This study is being done by Rakesh Mohan Verma from the University of Houston and Gerardo R., independent researcher.
.
#phishing #academia #cybersecurity #security #HCI #usablesecurity #cybersecurite

We are hiring a Lecturer or Senior Lecturer (Assistant/Associate Professor) in Cyber Security and Digital Harms. We are particularly interested in candidates with research interests in the human side of things (recent hires have been technical) but feel free to talk to us if you have any interest in the role and do pass on to others who you think might be interested: https://www.jobs.ac.uk/job/DCB581/lecturer-senior-lecturer-in-cyber-security-and-digital-harms-550711 #CyberSecurity #Jobs #UKHE #HumanFactors #Cybercrime #CyberLaw #UsableSecurity #HCI #Cyberpsychology

The Nineteenth Symposium on Usable Privacy and Security (SOUPS 2023) will be co-located with the 32nd USENIX Security Symposium, August 6–8, 2023, in Anaheim, CA, USA. Registrations are still open – check the event website for more details: https://www.usenix.org/conference/soups2023.

We would like to make two announcements as the date is approaching:

The Workshop on Inclusive Privacy and Security (while being part of SOUPS 2023) is taking place on July 30th, 2023. The workshop is virtual. Registrations are still open and are FREE. This is a great opportunity to engage in discussions about privacy and security research regarding vulnerable user groups (and affected non-users) https://inclusiveprivacy.org/workshops/wips2023.html

SOUPS 2023 is still accepting proposals for lightning talks (a few speakers unfortunately had to drop out, and the dates on the website have not been updated https://www.usenix.org/conference/soups2023/call-for-lightning-talks). The lightning talk chairs are particularly looking for participation from students and practitioners in industry who have never before presented at SOUPS.
___________________________________
#academia #usablesecurity #hcisec #usenix #soups2023 #cybersecurity

Re: Representative samples in #usablesecurity:
Representative samples are important when it comes to things that are not directly linked to basic psychological function, i.e. opinions or preferences. Usability-wise, representative samples that are used to produce averages are bad, as different user groups might have different preferences. Better: Look for elbow points in continuous preferences and use classification models (k-means etc.) to see whether user groups can be identified.
What you shouldn't do is pre-select people into age groups and think people within are all the same. People do not differ by age, but by preference. One could therefore argue, that representation by social quotas is not that helpful.

Submit to EuroUSEC 2023!

Submission of papers for this year's European Symposium on Usable Security (EuroUSEC) is now open. Contributions for the Research Track - mature work that has been completed - and the Vision Track - work in progress or concrete ideas for work that has yet to begin - must be registered by June 5, 2023. Accepted papers will be published in the ACM Proceedings.

Paper Registration: June 5, 2023
Paper Submission: June 9, 2023
EuroUSEC event: October 16 & 17, 2023.
https://eurousec23.itu.dk/
Where: Copenhagen, Denmark
#cfp #securite #security #usablesecurity #research #academia

With the Bird Site implementing New Features*, it's time for another #ConnectionList #Introduction #FollowFriday #JoinMastodon #TwitterMigration post, where I use my large follower count to more richly connect the #Fediverse :fediverse:

@sarahmei is Head of #Engineering at #BackerKit 👋

@vukosi is Chair of #DataScience at the University of #Pretoria, and works with Deep Learning #Indaba and #Masakhane #NLP to aid African language technologies 👋

@TomHoneyman leads work at #ARDC - the Australian Research Data Commons - to increase the recognition of #ResearchSoftware as a #research output 👋

@trao is Tanushree and she is doing a #PhD at #Stockholm #University where she works on #aid, #migration, #inequality and #institutions. She's into #rstats and #dataviz 👋

@KohaILS is the account for the #OpenSource integrated #Library system developed in #Aotearoa, and used around the world #GLAM 👋

@verena_distler is a #PostDoc at #UniBw ain #Munich who works on #HCI in #Security and #Privacy #UsableSecurity 👋

@wikidata is the #Mastodon account for the #Wikidata project, which aims to create #ontologies of #OpenData that can be re-used openly across the world 👋 ⌨️

Don't forget to post your own #ConnectionList so we can more richly connect the #Fediverse ❤️

📢 If you’ve got work in progress on Usable Security and Privacy, please consider submitting a poster to the SOUPS Conference until May 25, 2023!

https://usenix.org/conference/soups2023/call-for-posters

#soups2023 #UsableSecurity #privacy #security #infosec

"Why People Replace their Aging Smart Devices: A Push-Pull-Mooring Perspective", new paper accepted at Computers & Security. Congrats to all my wonderful co-authors! #Preprint is available: https://www.researchgate.net/publication/369937457_Why_People_Replace_their_Aging_Smart_Devices_A_Push-Pull-Mooring_Perspective #hcisec #usablesecurity #infosec #iot #smarthome #humanaspects

SOUPS will be co-located with the 32nd USENIX Security Symposium at the Anaheim Marriott in Anaheim, CA, USA. All workshops and beyond will be held on Sunday, August 6, 2023.

Submissions are due TODAY. See below for other important dates:
Notification of acceptance: Thursday, March 16, 2023
Final workshop CFP due date for workshop organizers: Thursday, March 30, 2023
Workshop paper submission deadline: Thursday, May 25, 2023
Workshop paper acceptance notification to authors: Thursday, June 8, 2023
Workshop final papers due: Thursday, June 22, 2023

More details, including examples of accepted proposals from previous years, can be found on https://www.usenix.org/conference/soups2023/call-for-workshops.

#academia #cfp #security #cybersecurity #usablesecurity @soups

https://www.torproject.org/ is hiring for one of the most crucial design jobs in the world, keeping people safe with a privacy and security tool.

#infosec #ProductDesigner #UsableSecurity #SecureDesign #ux #design #jobs

Remote worldwide, with some international travel. FT. $US 90K.

https://www.torproject.org/about/jobs/product-designer/

UGH - The US Treasury Department's login page forces you to use an onscreen keyboard that only responds to mouse clicks and disables pasting in their password field.

I imagine the main outcome of this is convincing people to use crappier and shorter passwords.

I'm begging the world to pleaseeeee stop using the readonly attribute in your password input fields.

#UsableSecurity #Authentication #JustLetMePasteFromMyPasswordManagerDamnit