Empirical Studies on Software Notices to Inform Policy Makers and Usability Designers

We evaluate the usability of End User License Agreements (EULAs) of popular consumer programs. Results from an empirical evaluation of 50 popular programs show the lack of accessibility and readability of notices. Our data from a recent study with 64 users involved in installation tasks confirms the public perception that notice to and consent by the user is not achieved.

[1]  W. David Slawson,et al.  Standard Form Contracts and Democratic Control of Lawmaking Power , 1971 .

[2]  Nathaniel Good,et al.  Usability and privacy: a study of Kazaa P2P file-sharing , 2003, CHI '03.

[3]  R. Flesch A new readability yardstick. , 1948, The Journal of applied psychology.

[4]  Rachel Greenstadt,et al.  Why We Can't Be Bothered to Read Privacy Policies - Models of Privacy Economics as a Lemons Market , 2004, Economics of Information Security.

[5]  Alessandro Acquisti,et al.  Privacy and rationality in individual decision making , 2005, IEEE Security & Privacy.

[6]  Michael E. J. Masson,et al.  Comprehension of legal contracts by non‐experts: Effectiveness of plain language redrafting , 1994 .

[7]  Ka-Ping Yee,et al.  Passpet: convenient password management and phishing protection , 2006, SOUPS '06.

[8]  Deirdre K. Mulligan,et al.  Noticing notice: a large-scale experiment on the timing of software license agreements , 2007, CHI.

[9]  Marti A. Hearst,et al.  Why phishing works , 2006, CHI.

[10]  Michel Plaisent,et al.  An empirical investigation of the prevalence of spyware in internet shareware and freeware distributions , 2005, J. Enterp. Inf. Manag..

[11]  Susan N. Lukwago,et al.  Do nutrition label readers eat healthier diets? Behavioral correlates of adults' use of food labels. , 1997, American journal of preventive medicine.

[12]  Ava E. Kleinmann,et al.  Assessment of Reading Rate in Postsecondary Students , 2003 .

[13]  Deirdre K. Mulligan,et al.  Stopping spyware at the gate: a user study of privacy, notice and spyware , 2005, SOUPS '05.

[14]  Rachel Greenstadt,et al.  Why we can't be bothered to read privacy policies models of privacy economics as a lemons market , 2003, ICEC '03.

[15]  Colin Potts,et al.  Privacy policies as decision-making tools: an evaluation of online privacy notices , 2004, CHI.

[16]  Friedrich Kessler,et al.  Contracts of Adhesion-Some Thoughts About Freedom of Contract , 1943 .

[17]  Tyler Moore,et al.  The Economics of Information Security , 2006, Science.

[18]  Peter Breese,et al.  Readability of notice of privacy forms used by major health care institutions. , 2005, JAMA.

[19]  J. Doug Tygar,et al.  Why Johnny Can't Encrypt: A Usability Evaluation of PGP 5.0 , 1999, USENIX Security Symposium.

[20]  Florencia Marotta-Wurgler,et al.  Competition and the Quality of Standard Form Contracts: An Empirical Analysis of Software License Agreements , 2005 .

[21]  Bongshin Lee,et al.  Electronic voting system usability issues , 2003, CHI '03.

[22]  Ryan J. Casamiquela Contractual Assent and Enforceability: Cyberspace , 2002 .

[23]  Robert A. Hillman,et al.  On-Line Boilerplate: Would Mandatory Website Disclosure of E-Standard Terms Backfire? , 2005 .

[24]  L. Camp Economics of Information Security , 2006 .