For this week's reading assignment, your group should read the (very short)
paper by Mary Theofanos.
- List the names of students in your group.
- Did everyone in your group contribute to the discussion
of your solutions
to this reading reflection? If not, who did not?
-
Theofanos analyzes the usability of security measures in several
different categories
(authentication, encryption, social engineering, security/dialog warnings, privacy).
Which of these categories does your group find most problematic?
-
Theofanos comments that developers need to stop thinking of users
as adversaries.
Why does Theofanos think this attitude is a problem?
(Note: Adams and Sasse have a widely-cited paper entitled, "Users are not the Enemy")
-
Does your group think that there is a trade-off between security and usability?
If so, explain.
If not, why not?