Properties of protection goals and their integration into a user interface
Computer Networks: The International Journal of Computer and Telecommunications Networking - electronic commerce
Security and Usability
HCSE'10 Proceedings of the Third international conference on Human-centred software engineering
Integrating multi-source user data to enhance privacy in social interaction
Proceedings of the 13th International Conference on Interacción Persona-Ordenador
A flexible approach for considering interdependent security objectives in service composition
Proceedings of the 28th Annual ACM Symposium on Applied Computing
Considering Interdependent Protection Goals in Domain-Specific Contexts: The di.me Case Study
ITNG '13 Proceedings of the 2013 10th International Conference on Information Technology: New Generations
Hi-index | 0.00 |
This work investigates visual support for easing the configuration of interdependent security goals. The interdependent nature of security goals did not receive sufficient attention in related work yet. A formal approach to adequately model interdependent security goals are multi-criteria optimization problems which can be solved either exactly or heuristically. This however depends on the question if the user is able to articulate his/her preferences regarding security goals. Furthermore, heuristic approaches confront users with possibly unlimited alternative configurations where each solution is equally well. In order to support users in the process of articulating preferences and selecting a suiting alternative, we provide visual facilities at the level of the user interface. The need for handling such issues emerged from the analysis of the EU funded di.me project which explicitly requires that such configurations are carried out by lay users. We present an approach tackling these issues by means of visual concepts triggering a service selection in the background which respects the interdependence of security goals. We concretely discuss the application of our approach by addressing a scenario concerned with deployment decisions in the di.me project.