This Article 
   
 Share 
   
 Bibliographic References 
   
 Add to: 
 
Digg
Furl
Spurl
Blink
Simpy
Google
Del.icio.us
Y!MyWeb
 
 Search 
   
Why Do Street-Smart People Do Stupid Things Online?
May/June 2008 (vol. 6 no. 3)
pp. 71-74
Sergey Bratus, Dartmouth College
Chris Masone, Dartmouth College
Sean W. Smith, Dartmouth College
The current epidemic of poor trust decisions by users online is largely due to flaws in GUIs that train the users away from using real-world security intuitions. The authors propose a principle for GUI designers that will help them avoid such design mistakes.

1. S.W. Smith, "Probing End-User IT Security Practices—via Homework," The Educause Quarterly, vol. 27, no. 4, 2004, pp. 68–71.
2. S.W. Smith and J. Marchesini, The Craft of System Security, Addison-Wesley, 2007.
3. K-P. Yee, "User Interaction Design for Secure Systems," Proc. 4th Int'l Conf. Information and Comm. Security, LNCS 2513, Springer-Verlag, 2002, pp. 278–290.
4. S. Garfinkel, Design Principles and Patterns for Computer Systems that Are Simultaneously Secure and Usable, PhD thesis, Dept. of Electrical Eng. and Computer Science, Massachusetts Institute of Technology, 2005.
1. D.A. Norman, The Design of Everyday Things, Basic Books, 1988.
2. S. Garfinkel, Design Principles and Patterns for Computer Systems that Are Simultaneously Secure and Usable, PhD thesis, Dept. of Electrical Eng. and Computer Science, Massachusetts Institute of Technology, 2005.
3. Apple Human Interface Guidelines, Apple, Jan. 2008, Chapter 5; http://developer.apple.com/documentation/ UserExperience/Conceptual/OSXHIGuidelines OSXHIGuidelines.pdf.
4. A. Whitten, Making Security Usable, PhD thesis, School of Computer Science, Carnegie Mellon Univ., 2003.
5. A. Whitten and J.D. Tygar, "Why Johnny Can't Encrypt: A Usability Evaluation of PGP 5.0," Proc. 8th Usenix Security Symp., Usenix Assoc., 1999, pp. 14–29.
6. R. West, "The Psychology of Security," Comm. ACM, vol. 51, no. 4, 2008, pp. 34–40.

Index Terms:
security, usability, GUI design, Secure Systems
Citation:
Sergey Bratus, Chris Masone, Sean W. Smith, "Why Do Street-Smart People Do Stupid Things Online?," IEEE Security & Privacy, vol. 6, no. 3, pp. 71-74, May-June 2008, doi:10.1109/MSP.2008.79
Usage of this product signifies your acceptance of the Terms of Use.