Nudging users towards online safety using gamified environments

Nudging users towards online safety using gamified environments

Humans are becoming the root cause of many security vulnerabilities that can compromise a whole network through erroneous or negligent behavior. Human vulnerability is a serious challenge, as users are very limited in their attention to information security warnings and guidelines. This paper descri...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Computers & security 2021-09, Vol.108, p.102270, Article 102270
Hauptverfasser: Petrykina, Yelena, Schwartz-Chassidim, Hadas, Toch, Eran
Format: Artikel
Sprache:eng
Schlagworte:
Computer Science
Computer Science, Information Systems
Cyber hygiene
Cybersecurity
Gamification
Interactive systems
Malware
Nudging
Preempting
Science & Technology
Security systems
Technology
Usable security
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Humans are becoming the root cause of many security vulnerabilities that can compromise a whole network through erroneous or negligent behavior. Human vulnerability is a serious challenge, as users are very limited in their attention to information security warnings and guidelines. This paper describes Security-Robot, a gamified interactive security system that rewards users according to their online security behavior. We evaluate our approach in a randomized controlled experiment against traditional security messages when users need to download software that may be malicious under time pressure. Our results show that a gamified experience reduces the number of downloaded malware without reducing productivity and that presenting preemptive notifications strengthens this effect. Finally, we discuss the implications of our findings to the theory of usable security and the design of interactive security systems.
ISSN:0167-4048
1872-6208
DOI:10.1016/j.cose.2021.102270