Obstacles to the Adoption of Secure Communication Tools

Ruba Abu-Salma; M. Angela Sasse; Joseph Bonneau; Anastasia Danilova; Alena Naiakshina; Matthew Smith

doi:10.1109/SP.2017.65

Obstacles to the Adoption of Secure Communication Tools

Ruba Abu-Salma, M. Angela Sasse, Joseph Bonneau, Anastasia Danilova, Alena Naiakshina, Matthew Smith

Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

The computer security community has advocated widespread adoption of secure communication tools to counter mass surveillance. Several popular personal communication tools (e.g., WhatsApp, iMessage) have adopted end-to-end encryption, and many new tools (e.g., Signal, Telegram) have been launched with security as a key selling point. However it remains unclear if users understand what protection these tools offer, and if they value that protection. In this study, we interviewed 60 participants about their experience with different communication tools and their perceptions of the tools' security properties. We found that the adoption of secure communication tools is hindered by fragmented user bases and incompatible tools. Furthermore, the vast majority of participants did not understand the essential concept of end-to-end encryption, limiting their motivation to adopt secure tools. We identified a number of incorrect mental models that underpinned participants' beliefs.

Original language	English (US)
Title of host publication	2017 IEEE Symposium on Security and Privacy, SP 2017 - Proceedings
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	137-153
Number of pages	17
ISBN (Electronic)	9781509055326
DOIs	https://doi.org/10.1109/SP.2017.65
State	Published - Jun 23 2017
Event	2017 IEEE Symposium on Security and Privacy, SP 2017 - San Jose, United States Duration: May 22 2017 → May 24 2017

Publication series

Name	Proceedings - IEEE Symposium on Security and Privacy
ISSN (Print)	1081-6011

Other

Other	2017 IEEE Symposium on Security and Privacy, SP 2017
Country/Territory	United States
City	San Jose
Period	5/22/17 → 5/24/17

ASJC Scopus subject areas

Safety, Risk, Reliability and Quality
Software
Computer Networks and Communications

Access to Document

10.1109/SP.2017.65

Cite this

Abu-Salma, R., Sasse, M. A., Bonneau, J., Danilova, A., Naiakshina, A., & Smith, M. (2017). Obstacles to the Adoption of Secure Communication Tools. In 2017 IEEE Symposium on Security and Privacy, SP 2017 - Proceedings (pp. 137-153). Article 7958575 (Proceedings - IEEE Symposium on Security and Privacy). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/SP.2017.65

Obstacles to the Adoption of Secure Communication Tools. / Abu-Salma, Ruba; Sasse, M. Angela; Bonneau, Joseph et al.
2017 IEEE Symposium on Security and Privacy, SP 2017 - Proceedings. Institute of Electrical and Electronics Engineers Inc., 2017. p. 137-153 7958575 (Proceedings - IEEE Symposium on Security and Privacy).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abu-Salma, R, Sasse, MA, Bonneau, J, Danilova, A, Naiakshina, A & Smith, M 2017, Obstacles to the Adoption of Secure Communication Tools. in 2017 IEEE Symposium on Security and Privacy, SP 2017 - Proceedings., 7958575, Proceedings - IEEE Symposium on Security and Privacy, Institute of Electrical and Electronics Engineers Inc., pp. 137-153, 2017 IEEE Symposium on Security and Privacy, SP 2017, San Jose, United States, 5/22/17. https://doi.org/10.1109/SP.2017.65

@inproceedings{5e08d881d1494e7bbda6746c0b8769de,

title = "Obstacles to the Adoption of Secure Communication Tools",

abstract = "The computer security community has advocated widespread adoption of secure communication tools to counter mass surveillance. Several popular personal communication tools (e.g., WhatsApp, iMessage) have adopted end-to-end encryption, and many new tools (e.g., Signal, Telegram) have been launched with security as a key selling point. However it remains unclear if users understand what protection these tools offer, and if they value that protection. In this study, we interviewed 60 participants about their experience with different communication tools and their perceptions of the tools' security properties. We found that the adoption of secure communication tools is hindered by fragmented user bases and incompatible tools. Furthermore, the vast majority of participants did not understand the essential concept of end-to-end encryption, limiting their motivation to adopt secure tools. We identified a number of incorrect mental models that underpinned participants' beliefs.",

author = "Ruba Abu-Salma and Sasse, {M. Angela} and Joseph Bonneau and Anastasia Danilova and Alena Naiakshina and Matthew Smith",

note = "Publisher Copyright: {\textcopyright} 2017 IEEE.; 2017 IEEE Symposium on Security and Privacy, SP 2017 ; Conference date: 22-05-2017 Through 24-05-2017",

year = "2017",

month = jun,

day = "23",

doi = "10.1109/SP.2017.65",

language = "English (US)",

series = "Proceedings - IEEE Symposium on Security and Privacy",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "137--153",

booktitle = "2017 IEEE Symposium on Security and Privacy, SP 2017 - Proceedings",

}

TY - GEN

T1 - Obstacles to the Adoption of Secure Communication Tools

AU - Abu-Salma, Ruba

AU - Sasse, M. Angela

AU - Bonneau, Joseph

AU - Danilova, Anastasia

AU - Naiakshina, Alena

AU - Smith, Matthew

PY - 2017/6/23

Y1 - 2017/6/23

N2 - The computer security community has advocated widespread adoption of secure communication tools to counter mass surveillance. Several popular personal communication tools (e.g., WhatsApp, iMessage) have adopted end-to-end encryption, and many new tools (e.g., Signal, Telegram) have been launched with security as a key selling point. However it remains unclear if users understand what protection these tools offer, and if they value that protection. In this study, we interviewed 60 participants about their experience with different communication tools and their perceptions of the tools' security properties. We found that the adoption of secure communication tools is hindered by fragmented user bases and incompatible tools. Furthermore, the vast majority of participants did not understand the essential concept of end-to-end encryption, limiting their motivation to adopt secure tools. We identified a number of incorrect mental models that underpinned participants' beliefs.

AB - The computer security community has advocated widespread adoption of secure communication tools to counter mass surveillance. Several popular personal communication tools (e.g., WhatsApp, iMessage) have adopted end-to-end encryption, and many new tools (e.g., Signal, Telegram) have been launched with security as a key selling point. However it remains unclear if users understand what protection these tools offer, and if they value that protection. In this study, we interviewed 60 participants about their experience with different communication tools and their perceptions of the tools' security properties. We found that the adoption of secure communication tools is hindered by fragmented user bases and incompatible tools. Furthermore, the vast majority of participants did not understand the essential concept of end-to-end encryption, limiting their motivation to adopt secure tools. We identified a number of incorrect mental models that underpinned participants' beliefs.

UR - http://www.scopus.com/inward/record.url?scp=85024496510&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85024496510&partnerID=8YFLogxK

U2 - 10.1109/SP.2017.65

DO - 10.1109/SP.2017.65

M3 - Conference contribution

AN - SCOPUS:85024496510

T3 - Proceedings - IEEE Symposium on Security and Privacy

SP - 137

EP - 153

BT - 2017 IEEE Symposium on Security and Privacy, SP 2017 - Proceedings

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 2017 IEEE Symposium on Security and Privacy, SP 2017

Y2 - 22 May 2017 through 24 May 2017

ER -

Obstacles to the Adoption of Secure Communication Tools

Abstract

Publication series

Other

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this