Convenience often trumps concerns about security in our everyday use of Internet of Things products. Cybersecurity professionals are usually expected to anticipate and eliminate these concerns as part of product development. We believe that they can join forces with user-centered designers, who are tasked to go beyond simple usability and communicate to users how to make their interactions secure. We developed a course in secure design that teaches students in cybersecurity and user-centered design to integrate usable security and information design in order to better communicate threats and emphasize key decisions to the user. As this is the first course of its kind, we conducted a study to assess students' interest and self-efficacy in the new field of secure design. This article reports the findings of this study and discusses the implications of user-centered security training of the future cybersecurity workforce.
[1]
Eugene Y. Vasserman,et al.
Developing and Piloting a Quantitative Assessment Tool for Cybersecurity Courses
,
2015
.
[2]
Melanie Volkamer,et al.
Mental Models - General Introduction and Review of Their Application to Human-Centred Security
,
2013,
Number Theory and Cryptography.
[3]
Deborah Compeau,et al.
Computer Self-Efficacy: Development of a Measure and Initial Test
,
1995,
MIS Q..
[4]
Christopher J. Novak,et al.
2009 Data Breach Investigations Report
,
2009
.
[5]
Filipo Sharevski,et al.
Novel approach for cybersecurity workforce development: A course in secure design
,
2018,
2018 IEEE Integrated STEM Education Conference (ISEC).