Comments on: Look Beyond the “Fundamental Conflict” http://usablesecurity.com/?p=4 Every system has a user. Fri, 10 Sep 2010 20:39:48 +0000 http://wordpress.org/?v=abc By: Rob Tannen http://usablesecurity.com/?p=4#comment-51 Rob Tannen Mon, 16 May 2005 17:31:23 +0000 http://usablesecurity.com/2005/03/12/look-beyond-the-fundamental-conflict/#comment-51 I agree that login/authentication systems (at least in their current mental-model based format) are a usability challenge. But what are the usability issues unique to other types of security applications (e.g. viruses, spam, etc). I've seen very little written about these. Any recommendations? I agree that login/authentication systems (at least in their current mental-model based format) are a usability challenge. But what are the usability issues unique to other types of security applications (e.g. viruses, spam, etc). I’ve seen very little written about these. Any recommendations?

]]> By: Gunnar http://usablesecurity.com/?p=4#comment-24 Gunnar Wed, 23 Mar 2005 13:22:08 +0000 http://usablesecurity.com/2005/03/12/look-beyond-the-fundamental-conflict/#comment-24 Well said. The job of the software architect, as I see it, is to harmonize the "ilities". This means find force multipliers among what are treated as the various specialty concerns like security and usability. There is a lot of shared ground and values between security and usability, not the least of which is a shared goal of simplicity. The software architect should focus on the areas where the disciplines agree, and making a business case that shows the combined impact of improved risk management (security) and user experience (usability). Well said. The job of the software architect, as I see it, is to harmonize the “ilities”. This means find force multipliers among what are treated as the various specialty concerns like security and usability. There is a lot of shared ground and values between security and usability, not the least of which is a shared goal of simplicity. The software architect should focus on the areas where the disciplines agree, and making a business case that shows the combined impact of improved risk management (security) and user experience (usability).

]]> By: Jeremy Dunck http://usablesecurity.com/?p=4#comment-18 Jeremy Dunck Wed, 23 Mar 2005 00:04:15 +0000 http://usablesecurity.com/2005/03/12/look-beyond-the-fundamental-conflict/#comment-18 Small world, Julien. (Ping, Julien is involved in Greasemonkey. Julien, I just met Ping at SxSW). Welcome to blogging, Ping. ;) Small world, Julien. (Ping, Julien is involved in Greasemonkey. Julien, I just met Ping at SxSW).

Welcome to blogging, Ping. ;)

]]> By: Usable security | Semiologic http://usablesecurity.com/?p=4#comment-12 Usable security | Semiologic Mon, 21 Mar 2005 10:55:10 +0000 http://usablesecurity.com/2005/03/12/look-beyond-the-fundamental-conflict/#comment-12 [...] usable security, which promises to be an interesting read. Their perspective from looking beyond the "fundamental conflict" more or less summarizes the whole issue: [...] [...] usable security, which promises to be an interesting read. Their perspective from looking beyond the "fundamental conflict" more or less summarizes the whole issue: [...]

]]> By: Ping http://usablesecurity.com/?p=4#comment-11 Ping Mon, 21 Mar 2005 06:00:18 +0000 http://usablesecurity.com/2005/03/12/look-beyond-the-fundamental-conflict/#comment-11 That's me. I'm Ka-Ping and i wrote this blog entry. Thanks for the kind compliment! I hope you stick around and chime in with your thoughts. There will be a lot to talk about, and we're just getting started. That’s me. I’m Ka-Ping and i wrote this blog entry. Thanks for the kind compliment!

I hope you stick around and chime in with your thoughts. There will be a lot to talk about, and we’re just getting started.

]]> By: Julien Couvreur http://usablesecurity.com/?p=4#comment-10 Julien Couvreur Sun, 20 Mar 2005 19:50:39 +0000 http://usablesecurity.com/2005/03/12/look-beyond-the-fundamental-conflict/#comment-10 I just noticed that you link to Ka on your frontage... So you odiously already knew his work... I just noticed that you link to Ka on your frontage… So you odiously already knew his work…

]]> By: Julien Couvreur http://usablesecurity.com/?p=4#comment-9 Julien Couvreur Sun, 20 Mar 2005 19:48:29 +0000 http://usablesecurity.com/2005/03/12/look-beyond-the-fundamental-conflict/#comment-9 Check out: http://www.andrewpatrick.ca/CHI2003/HCISEC/hcisec-workshop-yee.pdf Ka-Ping Yee has done some great work, that provide guidelines for aligning security and usability. He in considering capability systems in particular but the guidelines are general: http://www.sims.berkeley.edu/~ping/sid/ Check out: http://www.andrewpatrick.ca/CHI2003/HCISEC/hcisec-workshop-yee.pdf

Ka-Ping Yee has done some great work, that provide guidelines for aligning security and usability. He in considering capability systems in particular but the guidelines are general: http://www.sims.berkeley.edu/~ping/sid/

]]>