Given the increased focus on the need for usable security, it is now to be hoped that the issue will receive greater attention in new software releases. Unfortunately, however, there is still evidence to suggest that usable security receives insufficient consideration when the related features are presented in the context of larger applications. As an illustration of this claim, the paper examines how the security-related features have evolved within new releases of Internet Explorer and Word, and identifies that although there have been some improvements when compared to earlier versions, there are also aspects that will represent new or ongoing problems for users. Examples of such problems are highlighted in a number of security-related interfaces from both applications, with the use of technical terminology and/or a lack of accompanying help being amongst the frequent concerns. Nielsen's usability heuristics are then used as the basis for a summary-level evaluation, to illustrate how the identified issues also contravene good practice in user interface design.
[1]
Lorrie Faith Cranor,et al.
Security and Usability: Designing Secure Systems that People Can Use
,
2005
.
[2]
Jan H. P. Eloff,et al.
Security and human computer interfaces
,
2003,
Comput. Secur..
[3]
Jakob Nielsen,et al.
Ten Usability Heuristics
,
2006
.
[4]
Steven Furnell,et al.
The challenges of understanding and using security: A survey of end-users
,
2006,
Comput. Secur..
[5]
Steven Furnell,et al.
Why users cannot use security
,
2005,
Comput. Secur..
[6]
Steven Furnell.
Using security: Easier said than done?
,
2004
.
[7]
Nahid Shahmehri,et al.
Usable set-up of runtime security policies
,
2007,
Inf. Manag. Comput. Secur..