A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2017; you can also visit the original URL.
The file type is application/pdf
.
Conditioned-safe ceremonies and a user study of an application to web authentication
2009
Proceedings of the 5th Symposium on Usable Privacy and Security - SOUPS '09
We introduce the notion of a conditioned-safe ceremony. A "ceremony" is similar to the conventional notion of a protocol, except that a ceremony explicitly includes human participants. Our formulation of a conditioned-safe ceremony draws on several ideas and lessons learned from the human factors and human reliability community: forcing functions, defense in depth, and the use of human tendencies, such as rule-based decision making. We propose design principles for building conditioned-safe
doi:10.1145/1572532.1572578
dblp:conf/soups/KarlofTW09
fatcat:gyxsixxlsvcdfbfa35nfyum5ie