Generation of Usable Policy Administration Points for Security and Privacy
Seiten
- Titel ist leider vergriffen;
keine Neuauflage - Artikel merken
Users want to gain more self-determination in the form of self-responsible definition and control of their security and privacy demands. This dissertation addresses the automated creation of so-called Policy Administration Points for the specification of security and privacy policies. Hereby, we provide empirical evidence for creating efficient, effective and satisfying user interfaces for specific user types.
Users want to gain more self-determination in the form of self-responsible definition and control of their security and privacy demands. Policy Administration Points (PAPs) for the specification of security and privacy policies exist; however, users face usability problems using these tools. PAPs provide different specification paradigms, which determine the specification process for the task of policy specification including the levels of expressiveness and guidance for the user. This dissertation addresses the topic of automated creation of usable PAPs. First, we focus on the mapping of specification paradigms to user groups for increasing the usability by means of effectiveness, efficiency and satisfaction. Second, we propose a method for the automated creation of PAPs. This includes a method for eliciting security and privacy policy templates from an application domain, a policy template model for formalizing these policy templates as well as a PAP generation framework for the automated creation of policy specification interfaces within PAPs based on a policy template model instance. Last, we empirically confirm our findings in four case studies and one experiment.
Users want to gain more self-determination in the form of self-responsible definition and control of their security and privacy demands. Policy Administration Points (PAPs) for the specification of security and privacy policies exist; however, users face usability problems using these tools. PAPs provide different specification paradigms, which determine the specification process for the task of policy specification including the levels of expressiveness and guidance for the user. This dissertation addresses the topic of automated creation of usable PAPs. First, we focus on the mapping of specification paradigms to user groups for increasing the usability by means of effectiveness, efficiency and satisfaction. Second, we propose a method for the automated creation of PAPs. This includes a method for eliciting security and privacy policy templates from an application domain, a policy template model for formalizing these policy templates as well as a PAP generation framework for the automated creation of policy specification interfaces within PAPs based on a policy template model instance. Last, we empirically confirm our findings in four case studies and one experiment.
| Erscheinungsdatum | 07.03.2020 |
|---|---|
| Reihe/Serie | PhD Theses in Experimental Software Engineering ; 68 |
| Zusatzinfo | num. illus. and tab. |
| Verlagsort | Stuttgart |
| Sprache | englisch |
| Maße | 170 x 240 mm |
| Themenwelt | Informatik ► Netzwerke ► Sicherheit / Firewall |
| Informatik ► Software Entwicklung ► User Interfaces (HCI) | |
| Schlagworte | B • Fraunhofer IESE • Informatiker • IT-Sicherheitsverantwortliche • Privacy & data protection • Privacy and Data Protection • Software engineering • Softwareentwickler • Usable Security and Privacy • user interface design & usability • User interface design and usability • Wissenschaftler |
| ISBN-10 | 3-8396-1579-8 / 3839615798 |
| ISBN-13 | 978-3-8396-1579-9 / 9783839615799 |
| Zustand | Neuware |
| Informationen gemäß Produktsicherheitsverordnung (GPSR) | |
| Haben Sie eine Frage zum Produkt? |
Mehr entdecken
aus dem Bereich
aus dem Bereich
Das Lehrbuch für Konzepte, Prinzipien, Mechanismen, Architekturen und …
Buch | Softcover (2022)
Springer Vieweg (Verlag)
CHF 53,15
Lehrbuch für Prüfung und Praxis
Buch | Softcover (2023)
Springer Fachmedien Wiesbaden GmbH (Verlag)
CHF 27,95
Management der Informationssicherheit und Vorbereitung auf die …
Buch (2024)
Carl Hanser (Verlag)
CHF 97,95
