Download - Secure by design
Transcript
![Page 1: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/1.jpg)
SECURE BY
DESIGN
![Page 2: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/2.jpg)
JADE APPLEGATE
User Experience Engineer
@jadeapplegate
![Page 3: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/3.jpg)
![Page 4: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/4.jpg)
THE HAPPY PATH
![Page 5: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/5.jpg)
![Page 6: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/6.jpg)
![Page 7: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/7.jpg)
![Page 8: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/8.jpg)
![Page 9: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/9.jpg)
IMPROVING
SSLWARNINGS
![Page 10: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/10.jpg)
![Page 11: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/11.jpg)
“Click Through Rate”
![Page 12: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/12.jpg)
“Our goal is to decrease the number of users who click
through (i.e., ignore) Google Chrome’s SSL warnings.”
- Felt, et al.
![Page 13: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/13.jpg)
Imagery
![Page 14: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/14.jpg)
Default Chrome styling
![Page 15: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/15.jpg)
Firefox mockup
![Page 16: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/16.jpg)
Firefox warning with Chrome styling
![Page 17: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/17.jpg)
![Page 18: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/18.jpg)
“An ideal SSL warning would empower users to make informed decisions and, failing that, guide
confused users to safety. ” - Felt, et al
![Page 19: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/19.jpg)
Comprehension❏Threat source❏Data at risk❏False positive potential
![Page 20: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/20.jpg)
![Page 21: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/21.jpg)
Language❏Brevity❏Reading level❏Specific risks
![Page 22: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/22.jpg)
![Page 23: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/23.jpg)
“Opinionated Design”
![Page 24: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/24.jpg)
Choice Attractiveness
![Page 25: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/25.jpg)
Choice Visibility
![Page 26: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/26.jpg)
![Page 27: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/27.jpg)
THETAKEAWAY
![Page 28: Secure by design](https://reader035.vdocuments.net/reader035/viewer/2022062905/58718d671a28ab2c198b6bb5/html5/thumbnails/28.jpg)
QUESTIONS?
github.com/jadeapplegate/AllThingsOpen2015
@jadeapplegate