should i worry
play

Should I Worry? A Cross-Cultural Examination of Account Security - PowerPoint PPT Presentation

Apr 01, 2024 •157 likes •426 views

Should I Worry? A Cross-Cultural Examination of Account Security Incident Response Elissa M. Redmiles @eredmil1 eredmiles@cs.umd.edu How do users respond when their accounts are attacked? Elissa M. Redmiles 2 Cross cultural interview

  1. “Should I Worry?” A Cross-Cultural Examination of Account Security Incident Response Elissa M. Redmiles @eredmil1 eredmiles@cs.umd.edu

  2. How do users respond when their accounts are attacked? Elissa M. Redmiles 2

  3. Cross cultural interview study of users’ process of incident response (n=67) Investigate users’ process of incident response within 14 days after a suspicious login incident to their real Facebook account Participants construct causal timelines of the incident and pre- / post-behavior Interviewed 67 participants from five countries Elissa M. Redmiles 3

  4. Carefully designed methodology to ensure validity Use facebook log data to identify users from the Step 1 5 selected countries who had a suspicious login incident Step 2 Email eligible users to invite for a 30 minute native language in-person interview within 14 days of incident Step 3 Aim for 15 participants per country, diversify on gender, age & education Step 4 Validate behavioral reports for on-Facebook behaviors against log data (91% accuracy for user reports) Elissa M. Redmiles 4

  5. Extensive training to ensure cross-country validity Pilot interviews in the US (n=10) Interview training manager reviews protocol with moderators in each country Researcher listens in (with simultaneous translation) on practice interviews Researcher & trainer feedback provided until moderator consistency is achieved 5

  6. Common process of account security incident response across participants from five countries Elissa M. Redmiles 6

  7. Incident awareness through notification Awareness is triggered by the unique authentication process rather than the notification message Secondary authentication task created a sense of partnership between platform and user “it made me feel like...[Facebook] is on top of the game...somebody is watching out to make sure I don’t get hacked” -- DE1 7

  8. Common process of account security incident response across participants from five countries Elissa M. Redmiles 8

  9. Users’ causal attributions ( classifications ) of the incident False Positive (n=29) True Positive (n=31) Random Check (n=7) Unknown attacker New location Unsafe or “bad” “a random security check, like behavior TSA does at the airport” US2 “I hacked likes. So basically, I just hacked number of likes on the post” VN1 “like a checkup to make sure [the] account was ok” BR7 Mistyped password Known attacker “I hear about fake news a lot...I think they are cracking down… New or rarely everyone had to do this” IN4 used device VPN/private browsing 9

  10. Threat model Who? What? threat model Wash “digital graffiti artist” Wash “burglar” “The first time that it appeared, I thought it was someone who was trying Prior experiences that altered mental models were only prior the Spy Past experience the Snoop to access to my Facebook but the next times, I realized that it was just New! Facebook experiences, not generalized from other platforms the Who Else Facebook [trying] to enhance the security [again]” VN6 the Humiliator Repeated prior FN made participants disregard the current “the first time, I was worried...[now I understand] incident, even though the platform identified it as higher risk Facebook asks all users this when they go into a foreign country [now] I don’t think it has to do with me” DE2 Of participants with plausible mental models (n=51) over Mental Model half of those mental models were weak 10

  11. Common process of account security incident response across participants from five countries Elissa M. Redmiles 11

  12. Decision to take action depends on mental model & strength of mental model • Majority of users with a true positive mental model (21 of 31) took action True positive • Very few (3) took action False • None who had experienced similar notifications repeatedly took action (14) positive • Most (21 of 27) did not take action Weak • Remainder took multiple actions model 12

  13. Common process of account security incident response across participants from five countries Elissa M. Redmiles 13

  14. 24 participants took an on-platform action 11 took an off-platform action post- notification On-platform behavior included changing passwords and settings , behaving “better” , and checking accounts for tampering Off-platform behavior included “I actually stopped adding strangers in my friend list and “now I put in my cellphone [number so] that I should receive “I checked the messages to see if there was changing to novel new passwords on other accounts also stopped commenting on strangers’ posts” IN2 alerts if someone tries logging into my Facebook account...so it anything [sent] deceiving other friends” IN3 won’t be a surprise and I can kick them out right then” BR4 improving security posture potentially insecure changes (saving passwords in browser, avoiding VPN, using similar/simpler passwords) vague efforts toward vigilance “I’m more careful on email [now] too” US5 14

  15. Common process of account security incident response across participants from five countries See paper, including new motivation for information seeking: camaraderie Elissa M. Redmiles 15

  16. Common process of account security incident response across participants from five countries Elissa M. Redmiles 16

  17. Cross-cultural differences in response process relate to internet censorship, collectivism & platform use Censored country threat models (VN, IN) focus toward government-surveillance related threats Collectivistic country (BR, VN, IN) threat models focused on known attackers & different sources of information “I would feel that someone was violating me. Facebook use (e.g., business vs. passive) also And I wouldn’t know what to do because then influenced threat models & defenses I wouldn’t be able to do anything to recover.” BR13 Interesting note: skill did not come up! 17

  18. Improving the incident response process Weak mental models make it unlikely users will take action Causal modeling by platform could help augment user models ! Repeated false positives make it hard to regain user attention For now: indicate classifier confidence transparency Future: create user <> classifier feedback mechanisms Develop better defenses for known attacker threat models Key issue for non-Western cultures & domestic violence victims 18

  19. “Should I Worry?” A Cross-Cultural Examination of Account Security Incident Response Elissa M. Redmiles Questions? eredmiles@cs.umd.edu Brazil Germany India USA Vietnam

  20. Backup 20

  21. Participant Demographics 21% use for business 40% use messenger 15 participants 68% male 9 participants IN & VN majority male 11 participants 48% HS or below IN all college+ Good balance elsewhere 17 participants 15 participants 68% millennials VN, BR, IN very young DE, US middle aged

  22. United States Germany Brazil India Vietnam Internet Penetration Internet Freedom Individualism 0 25 50 75 100 Least Most 22

  23. Prior work has asked this question in reflective or hypothetical ways Asking questions about Asking questions about incidents long in the past can hypothetical breaches lead to telescoping bias raises issues of ecological validity Elissa M. Redmiles 23

  24. Common process of account security incident response across participants from five countries “well, I searched on Google, and it said that sometimes there are these people [who] just try getting into a bunch of accounts. And so I thought wow, that’s probably what’s happening here...At first I thought it was no big deal, but after reading that, I thought, wow, I should probably do something” US8 Elissa M. Redmiles 24

  25. Common process of account security incident response across participants from five countries “my friend, he said, just be alert for the next few days, in case anything weird goes on in the account” IN12 25

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Do Not Worry Matthew 6:25-34 Do Not Worry Do Not Worry Worry Preoccupation with problems

Do Not Worry Matthew 6:25-34 Do Not Worry Do Not Worry Worry Preoccupation with problems

Do Not Worry Matthew 6:25-34 Do Not Worry Do Not Worry Worry Preoccupation with problems without trusting God with them Do Not Worry 25 Therefore I tell you, do not worry about your life -Jesus Do Not Worry 1. Worry makes lesser

418 views • 21 slides
will pay big dividends. 1. WHAT IS WORRY? WORRY IS . . . To mentally dwell on difficulty or

will pay big dividends. 1. WHAT IS WORRY? WORRY IS . . . To mentally dwell on difficulty or

Your recent investment will pay big dividends. 1. WHAT IS WORRY? WORRY IS . . . To mentally dwell on difficulty or trouble; chronic concern. I have been through some terrible things in my life, some of which actually happened.

384 views • 36 slides
Becoming Aware of Worry and Stress Becoming Aware Worry/stress has three types of symptoms:

Becoming Aware of Worry and Stress Becoming Aware Worry/stress has three types of symptoms:

Becoming Aware of Worry and Stress Becoming Aware Worry/stress has three types of symptoms: Physical Thoughts Behaviors Physical How your body reacts to worry/stress Muscle tension Rapid pulse

656 views • 38 slides
A FINANCE OFFICERS LIST OF THINGS TO WORRY ABOUT (and some ways to relieve those worries)

A FINANCE OFFICERS LIST OF THINGS TO WORRY ABOUT (and some ways to relieve those worries)

A FINANCE OFFICERS LIST OF THINGS TO WORRY ABOUT (and some ways to relieve those worries) Presented by: Tom Lee Paul Billow Womble Carlyle Sandridge &amp; Rice, LLP July 19, 2016 Worry No. 1 Will my bond issue be audited by the IRS?

816 views • 62 slides
1 THE WOES OF A WORRYWART LUKE 12:22-34 ARE YOU PRONE TO WORRY? The Lords Disciples had

1 THE WOES OF A WORRYWART LUKE 12:22-34 ARE YOU PRONE TO WORRY? The Lords Disciples had

1 THE WOES OF A WORRYWART LUKE 12:22-34 ARE YOU PRONE TO WORRY? The Lords Disciples had given up all they had in order to follow Christ. They were living by FAITH, and FAITH is always tested. Worry is perhaps the most useless of all

325 views • 8 slides
Marianne Heaslip URBED 22 August 2018 Things I worry about. After Paris - Graphs: Glen

Marianne Heaslip URBED 22 August 2018 Things I worry about. After Paris - Graphs: Glen

Marianne Heaslip URBED 22 August 2018 Things I worry about. After Paris - Graphs: Glen Peters, based on IPCC projections via http://www.vox.com/2016/10/4/13118594/2- degrees-no-more-fossil-fuels Things I worry about.

394 views • 22 slides
Why Worry About the MPC ( )? The Distribution of Wealth and the Marginal Propensity to

Why Worry About the MPC ( )? The Distribution of Wealth and the Marginal Propensity to

Why Worry About the MPC ( )? The Distribution of Wealth and the Marginal Propensity to Consume Nobody trying to make a forecast in 2008-2010 would ask: Big stimulus tax cuts Christopher Carroll 1 Jiri Slacalek 2 Kiichi Tokuoka 3

391 views • 8 slides
How much do you worry that you might possibly have OCD? Presented by Jim Hatton , Ph.D., M.F.T.,

How much do you worry that you might possibly have OCD? Presented by Jim Hatton , Ph.D., M.F.T.,

How much do you worry that you might possibly have OCD? Presented by Jim Hatton , Ph.D., M.F.T., for DBSA San Diego on Monday, 5 October 2009 Thank you all for coming tonight, and thanks to the DBSA for asking me to join you. My name is Jim, and

321 views • 8 slides
We should not worry unduly about the market ; its largely out of our control and some might

We should not worry unduly about the market ; its largely out of our control and some might

Mark Cutifani Indaba Address Monday 8 February 2016 Making the right choices in the face of accelerating change We should not worry unduly about the market ; its largely out of our control and some might say it is out of control or

424 views • 13 slides
Why even worry about this stuff? 1 2/14/2019 Everyday could be the day Disasters are never

Why even worry about this stuff? 1 2/14/2019 Everyday could be the day Disasters are never

2/14/2019 Why even worry about this stuff? 1 2/14/2019 Everyday could be the day Disasters are never scheduled One big event doesnt mean the entire system stops Its about who you knowand what you do to serve the healthcare needs of

722 views • 14 slides
Trends and cycles in the Euro area: how much heterogeneity and should we worry about it?

Trends and cycles in the Euro area: how much heterogeneity and should we worry about it?

Trends and cycles in the Euro area: how much heterogeneity and should we worry about it? Domenico Giannone DGR-ECB, Universite Libre de Bruxelles (ECARES) Lucrezia Reichlin DGR-ECB and CEPR Fourth Macroeconomic Policy Research Workshop on

1.09k views • 76 slides
Welcome to the webinar! (Dont worry if you cant hear us yet well be muted till

Welcome to the webinar! (Dont worry if you cant hear us yet well be muted till

23/09/2016 Welcome to the webinar! (Dont worry if you cant hear us yet well be muted till 8:50am) Grab yourself a piece of paper, a pen and a coffee or tea and well be getting started bang on 9:00am Tony CJS Plumbing Swift

603 views • 29 slides
Performance W hen to worry, and when not to Strategies to boost performance Source: J on

Performance W hen to worry, and when not to Strategies to boost performance Source: J on

Performance W hen to worry, and when not to Strategies to boost performance Source: J on Bentley, W riting Efficient Programs , Prentice-Hall 1982 Software Engineering, M Young 5/15/00 1 Three cardinal rules of optimization

362 views • 11 slides
Announcements About scores Likely that we need to grade on a curve Dont worry too

Announcements About scores Likely that we need to grade on a curve Dont worry too

Announcements About scores Likely that we need to grade on a curve Dont worry too much about the absolute score: Just try to study as hard as you can Will adjust problem difficulties for the final This Thursday: No class!

561 views • 21 slides
Welcome to WIE 2016 What should we worry about? (As of 2014) Current debates about regulaAon

Welcome to WIE 2016 What should we worry about? (As of 2014) Current debates about regulaAon

Welcome to WIE 2016 What should we worry about? (As of 2014) Current debates about regulaAon focus on the parAculars of U.S. law: whether Title II or SecAon 706 is the beJer of two bad alternaAves. Lots of folks have observed that in the

119 views • 9 slides
The Optimality of when there is resale? Being Efficient Our Conclusion Lawrence Ausubel and

The Optimality of when there is resale? Being Efficient Our Conclusion Lawrence Ausubel and

Common Reaction Why worry about efficiency , The Optimality of when there is resale? Being Efficient Our Conclusion Lawrence Ausubel and Peter Cramton Why worry about Department of Economics revenue maximization , University of Maryland

346 views • 7 slides
Space Art astronautical extraterrestrial What is space art? astronomical How has space art

Space Art astronautical extraterrestrial What is space art? astronomical How has space art

The Federation of Galaxy Explorers Grade 3 | Lesson 6 Space Art astronautical extraterrestrial What is space art? astronomical How has space art affected how we think about space? Early space art Camille Flammarion Henry Alvim-Correa

423 views • 10 slides
Graffit ffiti i Data a Analy lysis sis Philip lip Santarp tarpia ia Pro rof. Chun un

Graffit ffiti i Data a Analy lysis sis Philip lip Santarp tarpia ia Pro rof. Chun un

12/17/2015 Graffit ffiti i Data a Analy lysis sis Philip lip Santarp tarpia ia Pro rof. Chun un BDA 761 Inquiries about the Graffiti Data What is the Average clean up time per borough? What is the largest problem area in each

221 views • 5 slides
Gradual Information Flow Typing Tim Disney Cormac Flanagan University of California Santa Cruz

Gradual Information Flow Typing Tim Disney Cormac Flanagan University of California Santa Cruz

Gradual Information Flow Typing Tim Disney Cormac Flanagan University of California Santa Cruz January 29th, 2011 - STOP 2011 Combining gradual typing with information flow Gradual Information + Typing Flow = More secure software

1.1k views • 82 slides
03: Choice &amp; Control 15-424: Foundations of Cyber-Physical Systems Andr e Platzer

03: Choice &amp; Control 15-424: Foundations of Cyber-Physical Systems Andr e Platzer

03: Choice &amp; Control 15-424: Foundations of Cyber-Physical Systems Andr e Platzer aplatzer@cs.cmu.edu Computer Science Department Carnegie Mellon University, Pittsburgh, PA 0.5 0.4 0.3 0.2 1.0 0.1 0.8 0.6 0.4 0.2 Andr e

847 views • 27 slides
Local Government, Governance And Local Government, Governance And Raising The Quality Of Public

Local Government, Governance And Local Government, Governance And Raising The Quality Of Public

Local Government, Governance And Local Government, Governance And Raising The Quality Of Public Debate A presentation in the Treasury Academic Lecture Series by Stephen Selwood of the New Zealand Council for infrastructure Stephen Selwood of the

596 views • 27 slides
Text Threat | Maroussia Lvesque | LogoCities 2007 TRADITIONAL FACADES: HARDCODED, STATIC DISPLAY

Text Threat | Maroussia Lvesque | LogoCities 2007 TRADITIONAL FACADES: HARDCODED, STATIC DISPLAY

LABORATORY FOR EXPERIMENTAL MEDIA Text Threat | Maroussia Lvesque | LogoCities 2007 TRADITIONAL FACADES: HARDCODED, STATIC DISPLAY Engineering and ar- chitectures agenda. Emotionally touch the user, inspire fear, admiration, etc FACADE

288 views • 11 slides
IDIS Online Training for CDBG Grantees CPD, Office of Block Grant Assistance Introductions

IDIS Online Training for CDBG Grantees CPD, Office of Block Grant Assistance Introductions

IDIS Online Training for CDBG Grantees CPD, Office of Block Grant Assistance Introductions Name Organization Experience CDBG IDIS Areas of CDBG program responsibilities IDIS responsibilities IDIS Online for CDBG

1.23k views • 90 slides
Objectives Review: databases, SQL, JDBC Software Engineering Tools Maven Issue

Objectives Review: databases, SQL, JDBC Software Engineering Tools Maven Issue

Objectives Review: databases, SQL, JDBC Software Engineering Tools Maven Issue Tracking: Jira Project Organization May 6, 2019 Sprenkle - CSCI335 1 Review: Databases, SQL, JDBC What do databases do for us? What are

670 views • 28 slides

More recommend