Subhashini Ganapathy, Delbert Marsh, and Glen J. Anderson, Intel
With significant increase in distributed data that can be accessed by various Web 2.0 applications and a variety of computing devices, the exposure of information to a wide array of threats has also increased. Also, these threats arise from many sources as an increasing number of hackers are driven by profit from identity theft. Many of the companies are focusing on going towards paperless transactions in an effort to go green.
As money becomes an increasingly digital construct and less physically tangible there is a need to ensure a balance of proper levels of security to protect a person’s identity and assets with ease of use and unfettered accessibility to their financial resources.
The focus of this paper will be on looking at security considerations for online transactions. The paper will address some of the perception of the IT administrators of companies with respect to browser security, based on data collected via semi-structured, on-site interviews with 25-30 IT professionals in the United States and United Kingdom across various business segments. The preliminary findings show that there is an increased concern on security from companies in United Kingdom vs. United States. UK more restricted in plug-ins and personal browsing. US more relaxed policies Field study also indicates that some companies feel that browser security is under control with the use of firewalls and anti-virus solutions. There is not a need to explicitly indicate that the browser is secure and safe. Some companies like the idea of protecting personal and transaction data. The paper will also demonstrate some methodologies to address the security concerns for these companies such as authentication of the legitimacy of the user and communication vehicles to satisfactorily convey and establish a trust relationship with the user of the system. Applying a human centered approach to security technologies will help alleviate problems associated with trust, usability and performance.
About the authors
Subhashini Ganapathy is a user experience researcher at Intel. She joined Intel in 2006 and began working in the Security Application Services group. Subhashini received her Ph.D. in Human factors engineering from Wright State University, Dayton OH. Her research interests include modeling human interactions on complex systems, decision making, information protection, model-based information technology systems, design optimization, and simulation and modeling. Her email is subhashini.ganapathy [at] intel.com
Delbert Marsh received his B.S. degree in Human Factors in 1995 from Florida Tech and his M.S. degree in Human Factors in 1998 from Clemson University. He joined Intel in 1999 working in an internal consulting capacity to design and evaluate internal applications before switching to his current role as a User Experience Researcher focusing on future home, office, and mobile product offerings in January of 2006. Prior to Intel, Delbert worked in aerospace doing interface design and testing supporting NASA, the FAA, and the US military. His e-mail is delbert.k.marsh.ii [at] intel.com
Glen J. Anderson joined Intel in 2004 and began work on implementing and evolving the U2PR process, first for the Digital Home Platform, then for the Digital Office. His interests include applied-research methodologies, mobile device design, online help systems, and patenting of user-oriented technology and methods. Glen received his BA degree in Psychology in 1987 from the University of St. Thomas; his MA degree in 1991, and his Ph.D. degree in 1993 in Human Factors Psychology from the University of South Dakota. His email is Glen.J.Anderson [at] intel.com
