Access Control for Home Data Sharing: Attitudes, Needs and Practices

Abstract

As digital content becomes more prevalent in the home, non-technical users are increasingly interested in sharing that content with others and accessing it from multiple devices. Not much is known about how these users think about controlling access to this data. To better understand this, we conducted semi-structured, in-situ interviews with 33 users in 15 households. We found that users create ad-hoc access-control mechanisms that do not always work; that their ideal polices are complex and multi-dimensional; that a priori policy specification is often insufficient; and that people's mental models of access control and security are often misaligned with current systems. We detail these findings and present a set of associated guidelines for designing usable access-control systems for the home environment.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Oct 01, 2009
Accession Number
ADA512841

Entities

People

  • Brandon Salmon
  • Christina Johns
  • Daniel J. Lee
  • Gregory R. Ganger
  • Iulia Ion
  • J. P. Arsenault
  • Jenny Olsen
  • Joanna Bresee
  • Kami Vaniea
  • Lorrie F. Cranor
  • Lujo Bauer
  • Michael Reiter
  • Michelle L. Mazurek
  • Nitin Gupta
  • Richard Shay
  • Yuan Liang

Organizations

  • Carnegie Mellon University

Tags

Communities of Interest

  • Human Systems

DTIC Thesaurus Topics

  • Boundaries
  • Computer Access Control
  • Computer Programming
  • Computers
  • Control Systems
  • Cybersecurity
  • Data Analysis
  • Digital Data
  • Directories
  • Electronic Mail
  • Entry Control Systems
  • Families (Human)
  • Human-Machine Interaction
  • Mobile Phones
  • Specifications
  • Standards
  • Text Messaging

Fields of Study

  • Computer science

Readers

  • Computer Science.
  • Rehabilitation and Prosthetic Care for Military Service Members and Veterans with Limb Loss or Disability.
  • Systems Analysis and Design