Experimenting At Scale With Google Chrome's SSL Warning

被引：41

作者：

Felt, Adrienne Porter ^{[1
]}

Reeder, Robert W. ^{[1
]}

Almuhimedi, Hazim ^{[2
]}

Consolvo, Sunny ^{[1
]}

机构：

[1] Google Inc, Mountain View, CA 94043 USA

[2] Carnegie Mellon Univ, Pittsburgh, PA 15213 USA

来源：

32ND ANNUAL ACM CONFERENCE ON HUMAN FACTORS IN COMPUTING SYSTEMS (CHI 2014) | 2014年

关键词：

Browser security warnings; SSL warnings; interruptive warnings; active warnings; interstitials;

D O I：

10.1145/2556288.2557292

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

Web browsers show HTTPS authentication warnings (i.e., SSL warnings) when the integrity and confidentiality of users' interactions with websites are at risk. Our goal in this work is to decrease the number of users who click through the Google Chrome SSL warning. Prior research showed that the Mozilla Firefox SSL warning has a much lower click-through rate (CTR) than Chrome. We investigate several factors that could be responsible: the use of imagery, extra steps before the user can proceed, and style choices. To test these factors, we ran six experimental SSL warnings in Google Chrome 29 and measured 130,754 impressions.

引用

页码：2667 / 2670

页数：4

共 9 条

[1] Akhawe Devdatta, 2013, Proceedings of the 22nd USENIX Security Symposium. Security '13, P257
[2] Egelman S, 2008, CHI 2008: 26TH ANNUAL CHI CONFERENCE ON HUMAN FACTORS IN COMPUTING SYSTEMS VOLS 1 AND 2, CONFERENCE PROCEEDINGS, P1065
[3] Emery N., 2000, NEUROSCIENCE BIOBEHA, V24
[4] Nodder C., 2005, SECURITY USABILITY, P589
[5] Rigdon M., 2009, J EC PSYCHOL, V30
[6] Senju A., 2009, TRENDS COGNITIVE SCI
[7] Sotirakopoulos A., 2011, P 7 S USABLE PRIVACY, P1, DOI [10.1145/2078827.2078831, DOI 10.1145/2078827.2078831]
[8] Sunshine Joshua, 2009, P USENIX SEC S, P399
[9] Wogalter M. S., 2002, APPL ERGONOMICS, V33, P3

← 1 →