000000350 001__ 350
000000350 005__ 20220617095704.0
000000350 037__ $$aLERSSE-RefConfPaper-2022-003
000000350 100__ $$aYue Huang
000000350 245__ $$aUsers' Perceptions of Chrome's Compromised Credential Notification
000000350 260__ $$c2022-06-17
000000350 300__ $$amult. p
000000350 520__ $$aThis paper reports the challenges that users experienced and their concerns regarding the Chrome compromised credentials notification. We adopted a two-step approach to uncover the issues of the notification, including qualitatively analyzing users' online comments and conducting semi-structured interviews with participants who had received the notification. We found that users’ issues with the notification are associated with five core aspects of the notification: the authenticity of the notification, data breach incidents, Google's knowledge of users' compromised credentials, multiple accounts being associated with one notification, and actions recommended by the notification. We also identified the detailed challenges and concerns users had regarding each aspect of the notification. Based on the results, we offer suggestions to improve the design of browser-based compromised credential notifications to support users in better protecting their online accounts.
000000350 6531_ $$aChrome's compromised credential notification
000000350 6531_ $$aSecurity and privacy concerns
000000350 6531_ $$aRisk mitigation strategies
000000350 700__ $$aBorke Obada-Obieh
000000350 700__ $$aKonstantin Beznosov
000000350 8560_ $$flersse-it@ece.ubc.ca
000000350 8564_ $$uhttp://lersse-dl.ece.ubc.ca/record/350/files/Final_SOUPS_102.pdf
000000350 909C4 $$pYue Huang, Borke Obada-Obieh, and Konstantin Beznosov, Users' Perceptions of Chrome’s Compromised Credential Notification, In Eighteenth Symposium on Usable Privacy and Security (SOUPS 2022)
000000350 980__ $$aRefConfPaper