Computer ScienceProceedings of the 33rd USENIX Security Symposium

Security and Privacy Software Creators' Perspectives on Unintended Consequences

H. S. Ramulu, H. Schmitt, et al.

Security & Privacy (S&P) software aims to protect people but can also enable criminals, mislead users with a false sense of security, and exclude those without technical backgrounds or accessibility needs. Based on 14 expert interviews with S&P creators, this study finds unintended consequences are often overlooked or handled ad hoc, shifting burdens to users. To improve outcomes, the authors recommend increasing awareness and education, promoting organizational accountability, and using systematic toolkits to anticipate impacts. Research conducted by Harshini Sri Ramulu, Helen Schmitt, Dominik Wermke, and Yasemin Acar.... show more

General Summary Metrics

Abstract

Security & Privacy (S&P) software is created to have positive impacts on people: to protect them from surveillance and attacks, enhance their privacy, and keep them safe. Despite these positive intentions, S&P software can have unintended consequences, such as enabling and protecting criminals, mis-leading people into using the software with a false sense of security, and being inaccessible to users without strong tech-nical backgrounds or with specific accessibility needs. In this study, through 14 semi-structured expert interviews with S&P software creators, we explore whether and how S&P soft-ware creators foresee and mitigate unintended consequences. We find that unintended consequences are often overlooked and ignored. When addressed, they are done in unstructured ways—often ad hoc and just based on user feedback—thereby shifting the burden to users. To reduce this burden on users and more effectively create positive change, we recommend S&P software creators to proactively consider and mitigate un-intended consequences through increasing awareness and edu-cation, promoting accountability at the organizational level to mitigate issues, and using systematic toolkits for anticipating impacts.

Publisher

Proceedings of the 33rd USENIX Security Symposium

Published On

Aug 14, 2024

Authors

Harshini Sri Ramulu, Helen Schmitt, Dominik Wermke, Yasemin Acar

Explore these studies to deepen your understanding

Adjacent work that informs or extends this paper's methodology and findings.

Health and Fitness

Perspectives of scholars on the origin, spread and consequences of COVID-19 are diverse but not polarized

P. K. Paudel, R. Bastola, et al.

Medicine and Health

The impact of counselors' values and religious beliefs on their role identity and perspectives on heritable genome editing: a qualitative interview study

W. P. Geuverink, J. T. Gitsels, et al.

Transportation

Public concerns and connected and automated vehicles: safety, privacy, and data security

D. Lee and D. J. Hess

Psychology

Healthcare Workers after Two Years of COVID-19: The Consequences of the Pandemic on Psychological Health and Sleep among Nurses and Physicians

G. Brachman, A. D. Schryver, et al.

Listen, Learn & Level Up

Over 10,000 hours of research content in 25+ fields, available in 22+ languages.

No more digging through PDFs, just hit play and absorb the world's latest research in your language, on your time.

listen to research audio papers with researchbunny