SoK: Safer Digital-Safety Research Involving At-Risk Users

Rosanna Bellini; Emily Tseng; Noel Warford; Alaa Daffalla; Tara Matthews; Sunny Consolvo; Jill Palzkill Woelfer; Patrick Gage Kelley; Michelle L. Mazurek; Dana Cuomo; Nicola Dell; Thomas Ristenpart

doi:10.1109/SP54263.2024.00071

SoK: Safer Digital-Safety Research Involving At-Risk Users

Rosanna Bellini, Emily Tseng, Noel Warford, Alaa Daffalla, Tara Matthews, Sunny Consolvo, Jill Palzkill Woelfer, Patrick Gage Kelley, Michelle L. Mazurek, Dana Cuomo, Nicola Dell, Thomas Ristenpart

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Research involving at-risk users - that is, users who are more likely to experience a digital attack or to be disproportionately affected when harm from such an attack occurs - can pose significant safety challenges to both users and researchers. Nevertheless, pursuing research in computer security & privacy (S&P) is crucial to understanding how to meet the digital-safety needs of at-risk users and to design safer technology for all. To standardize and bolster safer research involving such users, we offer an analysis of 196 academic works to elicit 14 research risks and 36 safety practices used by a growing community of researchers. We pair this inconsistent set of reported safety practices with oral histories from 12 domain experts to contribute scaffolded and consolidated pragmatic guidance that researchers can use to plan, execute, and share safer digital-safety research involving at-risk users. We conclude by suggesting areas for future research regarding the reporting, study, and funding of at-risk user research.

Original language	English (US)
Title of host publication	Proceedings - 45th IEEE Symposium on Security and Privacy, SP 2024
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	635-654
Number of pages	20
ISBN (Electronic)	9798350331301
DOIs	https://doi.org/10.1109/SP54263.2024.00071
State	Published - 2024
Event	45th IEEE Symposium on Security and Privacy, SP 2024 - San Francisco, United States Duration: May 20 2024 → May 23 2024

Publication series

Name	Proceedings - IEEE Symposium on Security and Privacy
ISSN (Print)	1081-6011

Conference

Conference	45th IEEE Symposium on Security and Privacy, SP 2024
Country/Territory	United States
City	San Francisco
Period	5/20/24 → 5/23/24

Keywords

at-risk users
digital-safety
privacy
research risks
security

ASJC Scopus subject areas

Safety, Risk, Reliability and Quality
Software
Computer Networks and Communications

Access to Document

10.1109/SP54263.2024.00071

Cite this

Bellini, R., Tseng, E., Warford, N., Daffalla, A., Matthews, T., Consolvo, S., Woelfer, J. P., Gage Kelley, P., Mazurek, M. L., Cuomo, D., Dell, N., & Ristenpart, T. (2024). SoK: Safer Digital-Safety Research Involving At-Risk Users. In Proceedings - 45th IEEE Symposium on Security and Privacy, SP 2024 (pp. 635-654). (Proceedings - IEEE Symposium on Security and Privacy). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/SP54263.2024.00071

SoK: Safer Digital-Safety Research Involving At-Risk Users. / Bellini, Rosanna; Tseng, Emily; Warford, Noel et al.
Proceedings - 45th IEEE Symposium on Security and Privacy, SP 2024. Institute of Electrical and Electronics Engineers Inc., 2024. p. 635-654 (Proceedings - IEEE Symposium on Security and Privacy).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Bellini, R, Tseng, E, Warford, N, Daffalla, A, Matthews, T, Consolvo, S, Woelfer, JP, Gage Kelley, P, Mazurek, ML, Cuomo, D, Dell, N & Ristenpart, T 2024, SoK: Safer Digital-Safety Research Involving At-Risk Users. in Proceedings - 45th IEEE Symposium on Security and Privacy, SP 2024. Proceedings - IEEE Symposium on Security and Privacy, Institute of Electrical and Electronics Engineers Inc., pp. 635-654, 45th IEEE Symposium on Security and Privacy, SP 2024, San Francisco, United States, 5/20/24. https://doi.org/10.1109/SP54263.2024.00071

@inproceedings{65206174d4f14b79bb3efd81e4132434,

title = "SoK: Safer Digital-Safety Research Involving At-Risk Users",

abstract = "Research involving at-risk users - that is, users who are more likely to experience a digital attack or to be disproportionately affected when harm from such an attack occurs - can pose significant safety challenges to both users and researchers. Nevertheless, pursuing research in computer security \& privacy (S\&P) is crucial to understanding how to meet the digital-safety needs of at-risk users and to design safer technology for all. To standardize and bolster safer research involving such users, we offer an analysis of 196 academic works to elicit 14 research risks and 36 safety practices used by a growing community of researchers. We pair this inconsistent set of reported safety practices with oral histories from 12 domain experts to contribute scaffolded and consolidated pragmatic guidance that researchers can use to plan, execute, and share safer digital-safety research involving at-risk users. We conclude by suggesting areas for future research regarding the reporting, study, and funding of at-risk user research.",

keywords = "at-risk users, digital-safety, privacy, research risks, security",

author = "Rosanna Bellini and Emily Tseng and Noel Warford and Alaa Daffalla and Tara Matthews and Sunny Consolvo and Woelfer, \{Jill Palzkill\} and \{Gage Kelley\}, Patrick and Mazurek, \{Michelle L.\} and Dana Cuomo and Nicola Dell and Thomas Ristenpart",

note = "Publisher Copyright: {\textcopyright} 2024 IEEE.; 45th IEEE Symposium on Security and Privacy, SP 2024 ; Conference date: 20-05-2024 Through 23-05-2024",

year = "2024",

doi = "10.1109/SP54263.2024.00071",

language = "English (US)",

series = "Proceedings - IEEE Symposium on Security and Privacy",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "635--654",

booktitle = "Proceedings - 45th IEEE Symposium on Security and Privacy, SP 2024",

}

TY - GEN

T1 - SoK

T2 - 45th IEEE Symposium on Security and Privacy, SP 2024

AU - Bellini, Rosanna

AU - Tseng, Emily

AU - Warford, Noel

AU - Daffalla, Alaa

AU - Matthews, Tara

AU - Consolvo, Sunny

AU - Woelfer, Jill Palzkill

AU - Gage Kelley, Patrick

AU - Mazurek, Michelle L.

AU - Cuomo, Dana

AU - Dell, Nicola

AU - Ristenpart, Thomas

PY - 2024

Y1 - 2024

N2 - Research involving at-risk users - that is, users who are more likely to experience a digital attack or to be disproportionately affected when harm from such an attack occurs - can pose significant safety challenges to both users and researchers. Nevertheless, pursuing research in computer security & privacy (S&P) is crucial to understanding how to meet the digital-safety needs of at-risk users and to design safer technology for all. To standardize and bolster safer research involving such users, we offer an analysis of 196 academic works to elicit 14 research risks and 36 safety practices used by a growing community of researchers. We pair this inconsistent set of reported safety practices with oral histories from 12 domain experts to contribute scaffolded and consolidated pragmatic guidance that researchers can use to plan, execute, and share safer digital-safety research involving at-risk users. We conclude by suggesting areas for future research regarding the reporting, study, and funding of at-risk user research.

AB - Research involving at-risk users - that is, users who are more likely to experience a digital attack or to be disproportionately affected when harm from such an attack occurs - can pose significant safety challenges to both users and researchers. Nevertheless, pursuing research in computer security & privacy (S&P) is crucial to understanding how to meet the digital-safety needs of at-risk users and to design safer technology for all. To standardize and bolster safer research involving such users, we offer an analysis of 196 academic works to elicit 14 research risks and 36 safety practices used by a growing community of researchers. We pair this inconsistent set of reported safety practices with oral histories from 12 domain experts to contribute scaffolded and consolidated pragmatic guidance that researchers can use to plan, execute, and share safer digital-safety research involving at-risk users. We conclude by suggesting areas for future research regarding the reporting, study, and funding of at-risk user research.

KW - at-risk users

KW - digital-safety

KW - privacy

KW - research risks

KW - security

UR - http://www.scopus.com/inward/record.url?scp=85182743967&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85182743967&partnerID=8YFLogxK

U2 - 10.1109/SP54263.2024.00071

DO - 10.1109/SP54263.2024.00071

M3 - Conference contribution

AN - SCOPUS:85182743967

T3 - Proceedings - IEEE Symposium on Security and Privacy

SP - 635

EP - 654

BT - Proceedings - 45th IEEE Symposium on Security and Privacy, SP 2024

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 20 May 2024 through 23 May 2024

ER -

SoK: Safer Digital-Safety Research Involving At-Risk Users

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this