OTO: Online trust oracle for user-centric trust establishment

Tiffany Hyun Jin Kim; Payas Gupta; Jun Han; Emmanuel Owusu; Jason Hong; Adrian Perrig; Debin Gao

doi:10.1145/2382196.2382239

OTO: Online trust oracle for user-centric trust establishment

Tiffany Hyun Jin Kim, Payas Gupta, Jun Han, Emmanuel Owusu, Jason Hong, Adrian Perrig, Debin Gao

Department of Electrical and Electronic Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

3 Citations (Scopus)

Abstract

Malware continues to thrive on the Internet. Besides automated mechanisms for detecting malware, we provide users with trust evidence information to enable them to make informed trust decisions. To scope the problem, we study the challenge of assisting users with judging the trustworthiness of software downloaded from the Internet. Through expert elicitation, we deduce indicators for trust evidence, then analyze these indicators with respect to scalability and robustness. We design OTO, a system for communicating these trust evidence indicators to users, and we demonstrate through a user study the effectiveness of OTO, even with respect to IE's SmartScreen Filter (SSF). The results from the between-subjects experiment with 58 participants confirm that the OTO interface helps people make correct trust decisions compared to the SSF interface regardless of their security knowledge, education level, occupation, age, or gender.

Original language	English
Title of host publication	CCS'12 - Proceedings of the 2012 ACM Conference on Computer and Communications Security
Pages	391-403
Number of pages	13
DOIs	https://doi.org/10.1145/2382196.2382239
Publication status	Published - 2012
Event	2012 ACM Conference on Computer and Communications Security, CCS 2012 - Raleigh, NC, United States Duration: 2012 Oct 16 → 2012 Oct 18

Publication series

Name	Proceedings of the ACM Conference on Computer and Communications Security
ISSN (Print)	1543-7221

Conference

Conference	2012 ACM Conference on Computer and Communications Security, CCS 2012
Country/Territory	United States
City	Raleigh, NC
Period	12/10/16 → 12/10/18

All Science Journal Classification (ASJC) codes

Software
Computer Networks and Communications

Access to Document

10.1145/2382196.2382239

Cite this

Kim, T. H. J., Gupta, P., Han, J., Owusu, E., Hong, J., Perrig, A., & Gao, D. (2012). OTO: Online trust oracle for user-centric trust establishment. In CCS'12 - Proceedings of the 2012 ACM Conference on Computer and Communications Security (pp. 391-403). (Proceedings of the ACM Conference on Computer and Communications Security). https://doi.org/10.1145/2382196.2382239

@inproceedings{bf3cc13c29a84ae5a5919cc95c36ccf6,

title = "OTO: Online trust oracle for user-centric trust establishment",

abstract = "Malware continues to thrive on the Internet. Besides automated mechanisms for detecting malware, we provide users with trust evidence information to enable them to make informed trust decisions. To scope the problem, we study the challenge of assisting users with judging the trustworthiness of software downloaded from the Internet. Through expert elicitation, we deduce indicators for trust evidence, then analyze these indicators with respect to scalability and robustness. We design OTO, a system for communicating these trust evidence indicators to users, and we demonstrate through a user study the effectiveness of OTO, even with respect to IE's SmartScreen Filter (SSF). The results from the between-subjects experiment with 58 participants confirm that the OTO interface helps people make correct trust decisions compared to the SSF interface regardless of their security knowledge, education level, occupation, age, or gender.",

author = "Kim, {Tiffany Hyun Jin} and Payas Gupta and Jun Han and Emmanuel Owusu and Jason Hong and Adrian Perrig and Debin Gao",

year = "2012",

doi = "10.1145/2382196.2382239",

language = "English",

isbn = "9781450316507",

series = "Proceedings of the ACM Conference on Computer and Communications Security",

pages = "391--403",

booktitle = "CCS'12 - Proceedings of the 2012 ACM Conference on Computer and Communications Security",

note = "2012 ACM Conference on Computer and Communications Security, CCS 2012 ; Conference date: 16-10-2012 Through 18-10-2012",

}

Kim, THJ, Gupta, P, Han, J, Owusu, E, Hong, J, Perrig, A & Gao, D 2012, OTO: Online trust oracle for user-centric trust establishment. in CCS'12 - Proceedings of the 2012 ACM Conference on Computer and Communications Security. Proceedings of the ACM Conference on Computer and Communications Security, pp. 391-403, 2012 ACM Conference on Computer and Communications Security, CCS 2012, Raleigh, NC, United States, 12/10/16. https://doi.org/10.1145/2382196.2382239

OTO: Online trust oracle for user-centric trust establishment. / Kim, Tiffany Hyun Jin; Gupta, Payas; Han, Jun et al.
CCS'12 - Proceedings of the 2012 ACM Conference on Computer and Communications Security. 2012. p. 391-403 (Proceedings of the ACM Conference on Computer and Communications Security).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - OTO

T2 - 2012 ACM Conference on Computer and Communications Security, CCS 2012

AU - Kim, Tiffany Hyun Jin

AU - Gupta, Payas

AU - Han, Jun

AU - Owusu, Emmanuel

AU - Hong, Jason

AU - Perrig, Adrian

AU - Gao, Debin

PY - 2012

Y1 - 2012

N2 - Malware continues to thrive on the Internet. Besides automated mechanisms for detecting malware, we provide users with trust evidence information to enable them to make informed trust decisions. To scope the problem, we study the challenge of assisting users with judging the trustworthiness of software downloaded from the Internet. Through expert elicitation, we deduce indicators for trust evidence, then analyze these indicators with respect to scalability and robustness. We design OTO, a system for communicating these trust evidence indicators to users, and we demonstrate through a user study the effectiveness of OTO, even with respect to IE's SmartScreen Filter (SSF). The results from the between-subjects experiment with 58 participants confirm that the OTO interface helps people make correct trust decisions compared to the SSF interface regardless of their security knowledge, education level, occupation, age, or gender.

AB - Malware continues to thrive on the Internet. Besides automated mechanisms for detecting malware, we provide users with trust evidence information to enable them to make informed trust decisions. To scope the problem, we study the challenge of assisting users with judging the trustworthiness of software downloaded from the Internet. Through expert elicitation, we deduce indicators for trust evidence, then analyze these indicators with respect to scalability and robustness. We design OTO, a system for communicating these trust evidence indicators to users, and we demonstrate through a user study the effectiveness of OTO, even with respect to IE's SmartScreen Filter (SSF). The results from the between-subjects experiment with 58 participants confirm that the OTO interface helps people make correct trust decisions compared to the SSF interface regardless of their security knowledge, education level, occupation, age, or gender.

UR - http://www.scopus.com/inward/record.url?scp=84869390901&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84869390901&partnerID=8YFLogxK

U2 - 10.1145/2382196.2382239

DO - 10.1145/2382196.2382239

M3 - Conference contribution

AN - SCOPUS:84869390901

SN - 9781450316507

T3 - Proceedings of the ACM Conference on Computer and Communications Security

SP - 391

EP - 403

BT - CCS'12 - Proceedings of the 2012 ACM Conference on Computer and Communications Security

Y2 - 16 October 2012 through 18 October 2012

ER -

OTO: Online trust oracle for user-centric trust establishment

Abstract

Publication series

Conference

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this