Technical Report Results

Technical Report TR652:
A Case Study in Using Design Principles for Secure Operating System Interfaces

Yiming Sun, Adity Mutsuddi, Baizil K. Jacob, Kay H. Connelly, and Minaxi Gupta
(Oct 2007), 34 pages
We present a three-phase case study in the use of design principles for designing usable and secure operating system (OS) interfaces. For the first phase, we performed a cognitive walkthrough of existing interfaces of a popular OS for creating accounts, logging into the computer, and configuring the set of services which run on the computer. After identifying potential problems, in phase 2, we designed interfaces that were meant to mitigate these problems. In the final phase, we performed a user study that examined the use of both interfaces. Participants using our interfaces had more secure behavior than those who used Windows XP interfaces.

Available as:
  • PDF (1020 KBytes)