Usable, Secure Content-Based Encryption on the Web

Usable, Secure Content-Based Encryption on the Web

Users share private information on the web through a variety of applications, such as email, instant messaging, social media, and document sharing. Unfortunately, recent revelations have shown that not only is users' data at risk from hackers and malicious insiders, but also from government sur...

Full description

Bibliographic Details
Main Author: Ruoti, Scott
Format: Others
Published: BYU ScholarsArchive 2016
Subjects:
Security
HCI
Usable security
Content-based encryption
Secure email
Webmail
End-to-end encryption
user study
Computer Sciences
Online Access:https://scholarsarchive.byu.edu/etd/6083
https://scholarsarchive.byu.edu/cgi/viewcontent.cgi?article=7082&context=etd
id ndltd-BGMYU2-oai-scholarsarchive.byu.edu-etd-7082
record_format oai_dc
spelling ndltd-BGMYU2-oai-scholarsarchive.byu.edu-etd-70822019-05-16T03:31:07Z Usable, Secure Content-Based Encryption on the Web Ruoti, Scott Users share private information on the web through a variety of applications, such as email, instant messaging, social media, and document sharing. Unfortunately, recent revelations have shown that not only is users' data at risk from hackers and malicious insiders, but also from government surveillance. This state of affairs motivates the need for users to be able to encrypt their online data.In this dissertation, we explore how to help users encrypt their online data, with a special focus on securing email. First, we explore the design principles that are necessary to create usable, secure email. As part of this exploration, we conduct eight usability studies of eleven different secure email tools including a total of 347 participants. Second, we develop a novel, paired-participant methodology that allows us to test whether a given secure email system can be adopted in a grassroots fashion. Third, we apply our discovered design principles to PGP-based secure email, and demonstrate that these principles are sufficient to create the first PGP-based system that is usable by novices. We have also begun applying the lessons learned from our secure email research more generally to content-based encryption on the web. As part of this effort, we develop MessageGuard, a platform for accelerating research into usable, content-based encryption. Using MessageGuard, we build and evaluate Private Facebook Chat (PFC), a secure instant messaging system that integrates with Facebook Chat. Results from our usability analysis of PFC provided initial evidence that our design principles are also important components to usable, content-based encryption on the Web. 2016-07-01T07:00:00Z text application/pdf https://scholarsarchive.byu.edu/etd/6083 https://scholarsarchive.byu.edu/cgi/viewcontent.cgi?article=7082&context=etd http://lib.byu.edu/about/copyright/ All Theses and Dissertations BYU ScholarsArchive Security HCI Usable security Content-based encryption Secure email Webmail End-to-end encryption user study Computer Sciences
collection NDLTD
format Others
sources NDLTD
topic Security
HCI
Usable security
Content-based encryption
Secure email
Webmail
End-to-end encryption
user study
Computer Sciences
spellingShingle Security
HCI
Usable security
Content-based encryption
Secure email
Webmail
End-to-end encryption
user study
Computer Sciences
Ruoti, Scott
Usable, Secure Content-Based Encryption on the Web
description Users share private information on the web through a variety of applications, such as email, instant messaging, social media, and document sharing. Unfortunately, recent revelations have shown that not only is users' data at risk from hackers and malicious insiders, but also from government surveillance. This state of affairs motivates the need for users to be able to encrypt their online data.In this dissertation, we explore how to help users encrypt their online data, with a special focus on securing email. First, we explore the design principles that are necessary to create usable, secure email. As part of this exploration, we conduct eight usability studies of eleven different secure email tools including a total of 347 participants. Second, we develop a novel, paired-participant methodology that allows us to test whether a given secure email system can be adopted in a grassroots fashion. Third, we apply our discovered design principles to PGP-based secure email, and demonstrate that these principles are sufficient to create the first PGP-based system that is usable by novices. We have also begun applying the lessons learned from our secure email research more generally to content-based encryption on the web. As part of this effort, we develop MessageGuard, a platform for accelerating research into usable, content-based encryption. Using MessageGuard, we build and evaluate Private Facebook Chat (PFC), a secure instant messaging system that integrates with Facebook Chat. Results from our usability analysis of PFC provided initial evidence that our design principles are also important components to usable, content-based encryption on the Web.
author Ruoti, Scott
author_facet Ruoti, Scott
author_sort Ruoti, Scott
title Usable, Secure Content-Based Encryption on the Web
title_short Usable, Secure Content-Based Encryption on the Web
title_full Usable, Secure Content-Based Encryption on the Web
title_fullStr Usable, Secure Content-Based Encryption on the Web
title_full_unstemmed Usable, Secure Content-Based Encryption on the Web
title_sort usable, secure content-based encryption on the web
publisher BYU ScholarsArchive
publishDate 2016
url https://scholarsarchive.byu.edu/etd/6083
https://scholarsarchive.byu.edu/cgi/viewcontent.cgi?article=7082&context=etd
work_keys_str_mv AT ruotiscott usablesecurecontentbasedencryptionontheweb
_version_ 1719186829473742848

Similar Items