TY - GEN
T1 - GuardLens
T2 - 19th Symposium on Usable Privacy and Security, SOUPS 2023
AU - Kaushik, Smirity
AU - Barbosa, Natã M.
AU - Yu, Yaman
AU - Sharma, Tanusree
AU - Kilhoffer, Zachary
AU - Seo, Joo Young
AU - Das, Sauvik
AU - Wang, Yang
N1 - Publisher Copyright:
© 2023 by The USENIX Association.All rights reserved.
PY - 2023
Y1 - 2023
N2 - Visual cues play a key role in how users assess the privacy/security of a website, but often remain inaccessible to people with visual impairments (PVIs), disproportionately exposing them to privacy and security risks. We employed an iterative, user-centered design process with 25 PVIs to design and evaluate GuardLens, a browser extension that improves the accessibility of privacy/security cues and helps PVIs assess a website’s legitimacy (i.e., if it is a spoof/phish). We started with a formative study to understand what privacy/security cues PVIs find helpful, and then improved GuardLens based on the results. Next, we further refined Guardlens based on a pilot study, and lastly, conducted our main study to evaluate GuardLens’ efficacy. The results suggest that GuardLens, by extracting and listing pertinent privacy/security cues in one place for faster and easier access, helps PVIs quickly and accurately determine if websites are legitimate or spoofs. PVIs found cues such as domain age, search result ranking, and the presence/absence of HTTPS encryption especially helpful. We conclude with design implications for tools to support PVIs with safe web browsing.
AB - Visual cues play a key role in how users assess the privacy/security of a website, but often remain inaccessible to people with visual impairments (PVIs), disproportionately exposing them to privacy and security risks. We employed an iterative, user-centered design process with 25 PVIs to design and evaluate GuardLens, a browser extension that improves the accessibility of privacy/security cues and helps PVIs assess a website’s legitimacy (i.e., if it is a spoof/phish). We started with a formative study to understand what privacy/security cues PVIs find helpful, and then improved GuardLens based on the results. Next, we further refined Guardlens based on a pilot study, and lastly, conducted our main study to evaluate GuardLens’ efficacy. The results suggest that GuardLens, by extracting and listing pertinent privacy/security cues in one place for faster and easier access, helps PVIs quickly and accurately determine if websites are legitimate or spoofs. PVIs found cues such as domain age, search result ranking, and the presence/absence of HTTPS encryption especially helpful. We conclude with design implications for tools to support PVIs with safe web browsing.
UR - http://www.scopus.com/inward/record.url?scp=85180417979&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85180417979&partnerID=8YFLogxK
M3 - Conference contribution
AN - SCOPUS:85180417979
T3 - Proceedings of the 19th Symposium on Usable Privacy and Security, SOUPS 2023
SP - 361
EP - 380
BT - Proceedings of the 19th Symposium on Usable Privacy and Security, SOUPS 2023
PB - USENIX Association
Y2 - 7 August 2023 through 8 August 2023
ER -