The Secret Lives of Assumptions: Developing and Refining Assumption Personas for Secure System Design

Abstract : Personas are useful for obtaining an empirically grounded understanding of a secure system's user population, its contexts of use, and possible vulnerabilities and threats endangering it. Often, however, personas need to be partly derived from assumptions; these may be embedded in a variety of different representations. Assumption Personas have been proposed as boundary objects for articulating assumptions about a user population, but no methods or tools currently exist for developing and refining these within the context of secure and usable design. This paper presents an approach for developing and refining assumption personas before and during the design of secure systems. We present a model for structuring the contribution of assumptions to assumption personas, together with a process for developing assumption personas founded on this model. We also present some preliminary results based on an application of this approach in a recent case study.
Type de document :
Communication dans un congrès
Regina Bernhaupt; Peter Forbrig; Jan Gulliksen; Marta Lárusdóttir. Third IFIP WG 13.2 International Conference on Human-Centred Software Engineering (HCSE), Oct 2010, Reykjavik, Iceland. Springer, Lecture Notes in Computer Science, LNCS-6409, pp.111-118, 2010, Human-Centred Software Engineering. 〈10.1007/978-3-642-16488-0_9〉
Liste complète des métadonnées

Littérature citée [14 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01055193
Contributeur : Hal Ifip <>
Soumis le : lundi 11 août 2014 - 17:10:40
Dernière modification le : vendredi 11 août 2017 - 17:50:06
Document(s) archivé(s) le : mercredi 26 novembre 2014 - 22:16:17

Fichier

p9_8.pdf
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Shamal Faily, Ivan Fléchais. The Secret Lives of Assumptions: Developing and Refining Assumption Personas for Secure System Design. Regina Bernhaupt; Peter Forbrig; Jan Gulliksen; Marta Lárusdóttir. Third IFIP WG 13.2 International Conference on Human-Centred Software Engineering (HCSE), Oct 2010, Reykjavik, Iceland. Springer, Lecture Notes in Computer Science, LNCS-6409, pp.111-118, 2010, Human-Centred Software Engineering. 〈10.1007/978-3-642-16488-0_9〉. 〈hal-01055193〉

Partager

Métriques

Consultations de la notice

92

Téléchargements de fichiers

130