A quarter century of usable security and privacy research: transparency, tailorability, and the road ahead - Research portal of Justus Liebig University Giessen:

Journal article

A quarter century of usable security and privacy research: transparency, tailorability, and the road ahead

Authors list: Reuter, Christian; Lo Iacono, Luigi; Benlian, Alexander

Publication year: 2022

Pages: 2035-2048

Journal: Behaviour & Information Technology

Volume number: 41

Issue number: 10

ISSN: 0144-929X

eISSN: 1362-3001

DOI Link: https://doi.org/10.1080/0144929X.2022.2080908

Publisher: Taylor and Francis Group

Abstract:
In the last decades, research has shown that both technical solutions and user perceptions are important to improve security and privacy in the digital realm. The field of 'usable security' already started to emerge in the mid-90s, primarily focussed on password and email security. Later on, the research field of "usable security and privacy" evolved and broadened the aim to design concepts and tools to assist users in enhancing their behaviour with regard to both privacy and security. Nevertheless, many user interventions are not as effective as desired. Because of highly diverse usage contexts, leading to different privacy and security requirements and not always to one-size-fits-all approaches, tailorability is necessary to address this issue. Furthermore, transparency is a crucial requirement, as providing comprehensible information may counter reactance towards security interventions. This article first provides a brief history of the research field in its first quarter-century and then highlights research on the transparency and tailorability of user interventions. Based on this, this article then presents six contributions with regard to (1) privacy concerns in times of COVID-19, (2) authentication on mobile devices, (3) GDPR-compliant data management, (4) privacy notices on websites, (5) data disclosure scenarios in agriculture, as well as (6) rights under data protection law and the concrete process should data subjects want to claim those rights. This article concludes with several research directions on user-centred transparency and tailorability.

Authors/Editors

- Uni.-Prof. Dr.-Ing. Luigi Lo Iacono

Citation Styles

Harvard Citation style: Reuter, C., Lo Iacono, L. and Benlian, A. (2022) A quarter century of usable security and privacy research: transparency, tailorability, and the road ahead, Behaviour & Information Technology, 41(10), pp. 2035-2048. https://doi.org/10.1080/0144929X.2022.2080908

APA Citation style: Reuter, C., Lo Iacono, L., & Benlian, A. (2022). A quarter century of usable security and privacy research: transparency, tailorability, and the road ahead. Behaviour & Information Technology. 41(10), 2035-2048. https://doi.org/10.1080/0144929X.2022.2080908