Bridging the Gap in Computer Security Warnings: A Mental Model Approach

@article{BravoLillo2011BridgingTG,
  title={Bridging the Gap in Computer Security Warnings: A Mental Model Approach},
  author={Cristian Bravo-Lillo and L. Cranor and J. Downs and Saranga Komanduri},
  journal={IEEE Security & Privacy},
  year={2011},
  volume={9},
  pages={18-26}
}
  • Cristian Bravo-Lillo, L. Cranor, +1 author Saranga Komanduri
  • Published 2011
  • Computer Science
  • IEEE Security & Privacy
  • Computer security warnings are intended to protect users and their computers. However, research suggests that these warnings might be largely ineffective because they're frequently ignored. The authors describe a mental model interview study designed to gain insight into how advanced and novice computer users perceive and respond to computer warnings. Developers can leverage the approaches of advanced users to design more effective warnings for novice users. 
    162 Citations

    Figures and Topics from this paper

    Mining the Mind – Applying Quantitative Techniques to Understand Mental Models of Security
    Security Warning Life Cycle: Challenges and Panacea
    • 4
    Improving Mental Models of Computer Security Through Information Graphics
    • 2
    • PDF
    That’s how I feel: A Study of User’s Security Mental Model
    • 1
    • PDF
    "Should I Worry?" A Cross-Cultural Examination of Account Security Incident Response
    • 6
    • PDF
    Habituation effects in computer security warning
    Habituation effects in computer security warning
    • 7

    References

    SHOWING 1-10 OF 15 REFERENCES
    Mental models of privacy and security
    • L. Camp
    • Engineering, Computer Science
    • IEEE Technology and Society Magazine
    • 2009
    • 144
    • PDF
    Do security toolbars actually prevent phishing attacks?
    • 565
    • PDF
    An Empirical Analysis of Phishing Blacklists
    • 315
    • PDF
    Purposes and Scope of Warnings,
    • Handbook of Warnings (Human Factors/Ergonomics), M.S. Wogalter, ed., Lawrence Erlbaum Assoc.,
    • 2006
    Risk Communication: A Mental Usability of Security 26
    • IEEE SECURITY & PRIVACY MARCH
    • 2011
    Communication - Human Information Processing Model
    • Handbook of Warnings ( Human Factors / Ergonomics )
    • 2009
    A Brief History of Warnings Handbook of Warnings
    • Human Factors Lawrence Erlbaum Assoc
    • 2006
    Communication-Human Information Processing Model Handbook of Warnings (Human Factors
    • Lawrence Erlbaum Assoc
    • 2006
    Egilman, “A Brief History of Warnings,
    • Handbook of Warnings (Human Factors/ Ergonomics),
    • 2006
    Purposes and Scope of Warnings Handbook of Warnings (Human Factors
    • Lawrence Erlbaum Assoc
    • 2006