experience design framework for securing large scale information and communication systems
TRANSCRIPT
![Page 1: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/1.jpg)
Azadeh NematzadehOmar Sosa-TzecSchool of Informatics and Computing Indiana University
Design Research Society Conference 2014June 16, 2014. Umeå, Sweden
Experience Design Framework for Securing Large Scale Information and Communication Systems
![Page 2: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/2.jpg)
1. Security and Privacy Concerns
2. Information and Communication Systems (ICSs) Concerns
3. Complex Systems and ICSs
4. Security and Privacy Framework
5. Implications
6. Conclusions
agenda
![Page 3: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/3.jpg)
1 . Security and Privacy Concerns
![Page 4: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/4.jpg)
![Page 5: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/5.jpg)
As designers, what and howdo we think about
security and privacyof Information and
Communication Systems?
![Page 6: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/6.jpg)
People have di!ferent privacy and security concerns
![Page 7: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/7.jpg)
Picture source: http://bit.ly/1xFLspW
responsibility on the users’ hands
![Page 8: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/8.jpg)
![Page 9: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/9.jpg)
between public and private
![Page 10: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/10.jpg)
Unknown and unpredictable security and privacy threats and failures
![Page 11: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/11.jpg)
![Page 12: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/12.jpg)
![Page 13: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/13.jpg)
2. ICSs concerns
![Page 14: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/14.jpg)
Heterogeneity of users
![Page 15: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/15.jpg)
Image by the authors
u
u
u
u
u
u
u
u
uu
u
u
u
u
u
u
u
u
u
u
u
u
u
diverse people: a “world” using icss
![Page 16: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/16.jpg)
ICSs entailmultiple use scenarios
![Page 17: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/17.jpg)
same system, different use
![Page 18: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/18.jpg)
different security and privacy scenarios
![Page 19: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/19.jpg)
Use scenarios change over time
![Page 20: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/20.jpg)
![Page 21: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/21.jpg)
Information and Communication Systems also change
![Page 23: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/23.jpg)
3. Complex Systems and ICSs
![Page 24: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/24.jpg)
Picture source: http://karaaustin.blogspot.com/
complex systems
Picture source: http://tinyurl.com/k76185y Picture source: http://bit.ly/SDVhE9 Picture source: http://dailym.ai/IUNYDM
![Page 25: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/25.jpg)
Aspects of security and privacy in ICSs show the characteristics of
complex systems
![Page 28: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/28.jpg)
Picture source: http://bit.ly/1oWmXiy
evolution
Picture source: http://bit.ly/1qBWKXJ
![Page 30: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/30.jpg)
As complex systems, ICSs entail user-system coevolution
![Page 31: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/31.jpg)
Image by the authors
ICSTimeUser
User-System Coevolution
![Page 32: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/32.jpg)
4. Security and Privacy Framework
![Page 33: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/33.jpg)
Complex System
Heterogeneity of users
User's privacy and security concerns and behaviors
Multiple use scenarios
Evolvable use scenarios
Evolution on ICT infrastructure
security and privacy challenges for experience design
![Page 34: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/34.jpg)
AvoidUnintentional
Disclosure
Securityand Privacy
Matters
Expandability
Personalization
AdaptabilityUsability
Image by the authors
framework
![Page 35: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/35.jpg)
security and privacy matters
Image by the authors
* Discussion* Re!lection
* Interaction !lows
* Possible security and privacy mechanisms
* Taking into account dynamic behavior
* How to mitigate future attacks* Think about possible system failures
* Generalities of the users* Context of use* Technological aspects
Security and Privacy
Specialist
ExperienceDesigner
User
![Page 36: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/36.jpg)
personalization
Image by the authors
Users: group 1 Users: group n-1
Large-Scale ICS
Privacy and Security Mechanisms
Users: group n
SensitiveParameters
SensitiveParameters
SensitiveParameters
![Page 37: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/37.jpg)
Facebook images from author's profile
personalization
![Page 38: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/38.jpg)
adaptability, expandability and usability
Image by the authors
User
tn t n+1User's attributes
Interaction withthe system
User's attributes
ICS
![Page 39: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/39.jpg)
Facebook images from author's profile
adaptability, expandability and usability
![Page 40: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/40.jpg)
Facebook images from author's profile
unintentional disclosure
![Page 41: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/41.jpg)
5. Implications
![Page 42: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/42.jpg)
ICSTimeUser
+ +
what is the meaning of this relation?
![Page 43: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/43.jpg)
The experience designer as translator and communicator
of knowledge
![Page 44: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/44.jpg)
ICS
TimeUser
ExperienceDesigner
Securityand Privacy Specialist
Client andStakeholders
User-System Coevolution
Design Process
![Page 45: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/45.jpg)
ICSs entail a challenge forboth design practice
and design pedagogy
![Page 46: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/46.jpg)
6. Conclusions
![Page 47: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/47.jpg)
We proposed an experience design framework constituted
by six security and privacy principles
![Page 48: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/48.jpg)
Security and Privacy MattersPersonalization
AdaptabilityExpandability
UsabilityAvoid Unintentional Disclosure
![Page 49: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/49.jpg)
Complex SystemsHeterogeneity of Users
Multiple and Evolvable Use ScenariosUser-System Coevolution
Security and PrivacyExperience Design
![Page 50: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/50.jpg)
Our attempt is to open a conversation about security
and privacy, and also about the implications of user-system
coevolution in ICSs for experience design.
![Page 51: Experience Design Framework for securing Large Scale Information and Communication Systems](https://reader034.vdocuments.us/reader034/viewer/2022042818/55b1d7a9bb61eb382c8b45e5/html5/thumbnails/51.jpg)
[email protected]://mypage.iu.edu/~azadnema/
[email protected]://tzec.com/
Paper available at:http://goo.gl/qZ7qsA
Thank you!
Questions?