Johnny Can't Encrypt: A Usability Evaluation of PGP 5.0”, USENIX Security ’99 https://www.usenix.org/conferences/test-of-time-awards USENIX Security ‘15 Test of Time Award IEEE S&P ’15 PC Co-Chair、NDSS ’17 General Chair Lujo Bauer(CMU) USENIX Security ‘18 PC Co-Chair Adrienne Porter Felt(Google)
in Writing about Security and Privacy Human Subjects Experiments, and How to Avoid Them” “Authors are encouraged to review: "Common Pitfalls in Writing about Security and Privacy Human Subjects Experiments, and How to Avoid Them." Note that this paper addresses research work taking an experimental and quantitative approach with hypothesis testing and statistical inference. However, SOUPS welcomes submissions that take other approaches and recognizes that other methodological considerations will be appropriate.” - SOUPS 2018 Call for Papers
Security and Privacy Human Subjects Experiments, and How to Avoid Them” を著者の許諾を得て、SPT研究会有志により和訳 https://github.com/akirakanaoka/ss_usp_jp “人間を対象にしたセキュリティとプライバシー実験について執筆するときにありがちな落とし穴と、 その回避方法”
Security (WIPS) The 5th Workshop on Security Information Workers (WSIW 2019) 5th Who Are You?! Adventures in Authentication (WAY 2019) Contextual Integrity: From Theory to Practice Designing for the Extremes of Risk
Rogers, Arunesh Mathur, Nathan Malkin, Marshini Chetty, “Keepers of the Machines: Examining How System Administrators Manage Software Updates For Multiple Machines” IAPP SOUPS Privacy Award Jordan Hayes, Smirity Kaushik, Charlotte Emily Price, Yang Wang, “Cooperative Privacy and Security: Learning from People with Visual Impairments and Their Allies”
or privacy functionality and design • Field studies of security or privacy technology • Usability evaluations of new or existing security or privacy features • Security testing of new or existing usability features • Longitudinal studies of deployed security or privacy features • Studies of administrators or developers and support for security and privacy • The impact of organizational policy or procurement decisions • Lessons learned from the deployment and use of usable privacy and security features • Foundational principles of usable security or privacy • Ethical, psychological, sociological aspects of usable security and privacy • Usable security and privacy implications/solutions for specific domains (e.g., IoT, medical, vulnerable populations) • Replicating or extending important previously published studies and experiments Replication Papers In addition to original work, we are soliciting well-executed replication studies that meaningfully confirm, question, or clarify the result under consideration. Please prefix the title of these papers with the word “Replication:” for the review process. Replication papers should aim to replicate important/influential findings from the literature. They may not necessarily offer new or unexpected findings; papers confirming previous findings are also considered contributions. Replication of a result that has already been replicated many times is less valuable. Replication of an obscure study that originally had only minimal influence on the community is less valuable. Authors should clearly state why they conducted a replication study, describe the methodological differences precisely, and compare their findings with the results from the original study. Replications paper will be held to the same scientific standards as other technical papers. They should use currently accepted methodologies and technologies. Authors should not reuse outdated methods/technologies simply because they were used in the original paper. Replications may follow the same protocol as the original study, or may vary one or more key variables to see whether the result is extensible (e.g., re-running a study with a sample from a different population). SOUPS 2019 Call for Papersより抜粋
Papers: New for SOUPS 2019, we are soliciting Systematization of Knowledge (SoK) papers that integrate and systematize existing knowledge to provide new insight into a previously studied area of usable security or privacy. SoK papers should draw on prior work to put forth a new taxonomy, argument, or observation in an area in which substantial work has already been done. SoK papers should be more than a survey or summary of prior work in an area. SoK papers will be held to the same scientific and presentation standards as other technical papers. Please prefix the title of these papers with “SoK:” and check the SoK checkbox on the submission form to flag them for the review process.
Lisa Rogers, University of Maryland; Arunesh Mathur, Princeton University; Nathan Malkin, University of California, Berkeley; Marshini Chetty, Princeton University “Keepers of the Machines: Examining How System Administrators Manage Software Updates”