International Conference on Trust and Trustworthy Computing

Trust 2015: Trust and Trustworthy Computing pp 104-122

Design and Field Evaluation of PassSec: Raising and Sustaining Web Surfer Risk Awareness

  • Melanie Volkamer
  • Karen Renaud
  • Gamze Canova
  • Benjamin Reinheimer
  • Kristoffer Braun
Conference paper

DOI: 10.1007/978-3-319-22846-4_7

Volume 9229 of the book series Lecture Notes in Computer Science (LNCS)
Cite this paper as:
Volkamer M., Renaud K., Canova G., Reinheimer B., Braun K. (2015) Design and Field Evaluation of PassSec: Raising and Sustaining Web Surfer Risk Awareness. In: Conti M., Schunter M., Askoxylakis I. (eds) Trust and Trustworthy Computing. Trust 2015. Lecture Notes in Computer Science, vol 9229. Springer, Cham

Abstract

This paper presents PassSec, a Firefox Add-on that raises user awareness about safe and unsafe password entry while they surf the web. PassSec comprises a two-stage approach: highlighting as the web page loads, then bringing up a just-in-time helpful dialogue when the user demonstrates an intention to enter a password on an unsafe web page. PassSec was developed using a human-centred design approach. We performed a field study with 31 participants that showed that PassSec significantly reduces the number of logins on websites where password entry is unsafe.

Copyright information

© Springer International Publishing Switzerland 2015

Authors and Affiliations

  • Melanie Volkamer
    • 1
    • 3
  • Karen Renaud
    • 2
  • Gamze Canova
    • 1
  • Benjamin Reinheimer
    • 1
  • Kristoffer Braun
    • 1
  1. 1.Technische Universität DarmstadtDarmstadtGermany
  2. 2.University of GlasgowGlasgowUK
  3. 3.Karlstad UniversityKarlstadSweden