Cyber attacks are emerging as problems caused not only by tech- nological aspects but also by human factors neglected when designing inter- active systems. In this paper, we show how one of the most popular attacks on the Web, phishing, is very much related to UI aspects and how a wrong UI design determines a greater vulnerability of users. We performed a heuristic evaluation to assess the most recent applications such as browsers and mail clients that adopt warning messages as prevention of phishing attacks. The results highlighted that different aspects of UI should be better designed to limit phishing attacks. In addition, as a prevention of cyber attacks, we described an ongoing work of a questionnaire that aims to make users aware of the risks of cyber attacks.

Alerting Users About Phishing Attacks / Giuseppe, Desolda; DI NOCERA, Francesco; Ferro, LAUREN STACEY; Rosa, Lanzilotti; Maggi, Piero; Marrella, Andrea. - 11594:(2019), pp. 134-148. (Intervento presentato al convegno 1st International Conference on HCI for Cybersecurity, Privacy and Trust, HCI-CPT 2019, held as part of the 21st International Conference on Human-Computer Interaction, HCI International 2019 tenutosi a Orlando; United States) [10.1007/978-3-030-22351-9_9].

Alerting Users About Phishing Attacks

Francesco Di Nocera;FERRO, LAUREN STACEY;Piero Maggi;Andrea Marrella
2019

Abstract

Cyber attacks are emerging as problems caused not only by tech- nological aspects but also by human factors neglected when designing inter- active systems. In this paper, we show how one of the most popular attacks on the Web, phishing, is very much related to UI aspects and how a wrong UI design determines a greater vulnerability of users. We performed a heuristic evaluation to assess the most recent applications such as browsers and mail clients that adopt warning messages as prevention of phishing attacks. The results highlighted that different aspects of UI should be better designed to limit phishing attacks. In addition, as a prevention of cyber attacks, we described an ongoing work of a questionnaire that aims to make users aware of the risks of cyber attacks.
2019
1st International Conference on HCI for Cybersecurity, Privacy and Trust, HCI-CPT 2019, held as part of the 21st International Conference on Human-Computer Interaction, HCI International 2019
Usable security; Cyber security; Phishing; Design patterns
04 Pubblicazione in atti di convegno::04b Atto di convegno in volume
Alerting Users About Phishing Attacks / Giuseppe, Desolda; DI NOCERA, Francesco; Ferro, LAUREN STACEY; Rosa, Lanzilotti; Maggi, Piero; Marrella, Andrea. - 11594:(2019), pp. 134-148. (Intervento presentato al convegno 1st International Conference on HCI for Cybersecurity, Privacy and Trust, HCI-CPT 2019, held as part of the 21st International Conference on Human-Computer Interaction, HCI International 2019 tenutosi a Orlando; United States) [10.1007/978-3-030-22351-9_9].
File allegati a questo prodotto
File Dimensione Formato  
Desolda_Alerting-Users-About_2019.pdf

solo gestori archivio

Tipologia: Versione editoriale (versione pubblicata con il layout dell'editore)
Licenza: Tutti i diritti riservati (All rights reserved)
Dimensione 2.57 MB
Formato Adobe PDF
2.57 MB Adobe PDF   Contatta l'autore

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11573/1302185
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 9
  • ???jsp.display-item.citation.isi??? 7
social impact