Experience Design Framework for securing Large Scale Information and Communication Systems
* Paper presented at the Design Research Society Conference 2014 at Umeå, Sweden. It proposes a framework for UX design regarding security and privacy of Information and Communication Systems (ICSs) ---- Abstract ----- Securing Information and Communication Systems (ICSs) is a highly complex process due in large part to the feedback relationship that holds between the users and the system and its 'ecosystem' of usage. Such a relationship is critical for experience designers. The design of secure systems can thereby be enhanced by using principles from disciplines where similar relations hold, such as security engineering and adaptive systems. In this work, we propose a user experience design framework based on six principles and use a social networking system as an example of its application. The proposed design principles are grounded in complex systems theory. We address several potential security and privacy challenges inherent in the design of a large-scale adaptive system. By means of this framework we reflect upon the participation of an experience designer regarding the conceptualization, selection, review, and update of security and privacy matters. In this sense, we observe the role of the designer as a translator across disciplines. By introducing our framework, we also attempt to start a conversation about the challenges a designer faces in the appropriation of this role, either for the case of securing large-scale systems or in those situations where the boundaries of design and knowledge from other disciplines already overlap.
Recomendados
Más contenido relacionado
Destacado
Destacado (20)
Similar a Experience Design Framework for securing Large Scale Information and Communication Systems
Similar a Experience Design Framework for securing Large Scale Information and Communication Systems (20)
Más de Omar Sosa-Tzec
Más de Omar Sosa-Tzec (19)
Último
Último (20)
Experience Design Framework for securing Large Scale Information and Communication Systems
- 1. Azadeh Nematzadeh Omar Sosa-Tzec School of Informatics and Computing Indiana University Design Research Society Conference 2014 June 16, 2014. Umeå, Sweden ExperienceDesignFrameworkfor SecuringLargeScaleInformationand CommunicationSystems
- 2. 1. SecurityandPrivacyConcerns 2. InformationandCommunicationSystems (ICSs) Concerns 3. ComplexSystemsandICSs 4. SecurityandPrivacyFramework 5. Implications 6. Conclusions agenda
- 6. People have different privacy and security concerns
- 7. Picturesource:http://bit.ly/1xFLspW responsibility on the users’ hands
- 9. between public and private
- 10. Unknown and unpredictable security and privacy threats and failures
- 13. 2.ICSsconcerns
- 15. Imagebytheauthors u u u u u u u u uu u u u u u u u u u u u u u diverse people: a “world” using icss
- 16. ICSs entail multiple use scenarios
- 17. same system, different use
- 18. different security and privacy scenarios
- 19. Use scenarios change over time
- 21. Information and Communication Systems also change
- 24. Picturesource:http://karaaustin.blogspot.com/ complex systems Picturesource:http://tinyurl.com/k76185y Picturesource:http://bit.ly/SDVhE9 Picturesource:http://dailym.ai/IUNYDM
- 25. Aspects of security and privacy in ICSs show the characteristics of complex systems
- 30. As complex systems,ICSs entail user-system coevolution
- 33. Complex System Heterogeneity of users User's privacy and security concerns and behaviors Multiple use scenarios Evolvable use scenarios Evolution on ICT infrastructure security and privacy challenges for experience design
- 35. security and privacy matters Imagebytheauthors *Discussion *Reflection *Interaction flows *Possible security and privacy mechanisms *Taking into account dynamic behavior *How to mitigate future attacks *Think about possible system failures *Generalities of the users *Context of use *Technological aspects Security and Privacy Specialist Experience Designer User
- 36. personalization Imagebytheauthors Users: group 1 Users: group n-1 Large-ScaleICS PrivacyandSecurityMechanisms Users: group n Sensitive Parameters Sensitive Parameters Sensitive Parameters
- 38. adaptability, expandability and usability Imagebytheauthors User t n t n+1User's attributes Interaction with the system User's attributes ICS
- 41. 5.Implications
- 42. ICSTime User + + what is the meaning of this relation?
- 43. The experience designer as translator and communicator of knowledge
- 45. ICSs entail a challenge for both design practice and design pedagogy
- 46. 6.Conclusions
- 47. We proposed an experience design framework constituted by six security and privacy principles
- 48. Security and Privacy Matters Personalization Adaptability Expandability Usability Avoid Unintentional Disclosure
- 49. Complex Systems Heterogeneity of Users Multiple and Evolvable Use Scenarios User-System Coevolution Security and Privacy Experience Design
- 50. Our attempt is to open a conversation about security and privacy,and also about the implications of user-system coevolution in ICSs for experience design.