2024
Not as easy as just update: Survey of System Administrators and Patching Behaviours [bibtex]
A. Jenkins, L. Liu, M.K. Wolters, K. Vaniea; In Proceedings of the CHI Conference on Human Factors in Computing Systems (CHI '24). 2024.
@inproceedings{jenkinsCHI2024,
title = {Not as easy as just update: Survey of System Administrators and Patching Behaviours},
author = {Jenkins, Adam and Liu, Linsen and Wolters, Maria K. and Vaniea, Kami},
booktitle = {Proceedings of the CHI Conference on Human Factors in Computing Systems (CHI '24)},
month = may,
year = {2024},
organization = {ACM},
doi = {10.1145/3613904.3642456},
isbn = {979-8-4007-0330-0/24/05},
url = {https://tulipslab.org/papers/jenkinsCHI2024.pdf},
note = {To Appear},
month_numeric = {5}
}
hide
T. Saka, K. Vaniea, N. Kokciyan; In In Proceedings of the Workshop on Security and Artificial Intelligence (SECAI 2024). 2024.
@inproceedings{saka2022-aised,
author = {Saka, Tarini and Vaniea, Kami and Kokciyan, Nadin},
booktitle = {In Proceedings of the Workshop on Security and Artificial Intelligence (SECAI 2024)},
location = {Bydgoszcz, Poland},
month = sep,
publisher = {Springer},
title = {PhishCoder: Efficient Extraction of Contextual Information from Phishing Emails},
url = {https://vaniea.com/publication/saka2024-phishcoder/saka2024-phishcoder.pdf},
year = {2024},
month_numeric = {9}
}
hide
T. Saka, R. Jain, K. Vaniea, N. Kökciyan; In arXiv. 2024.
@misc{saka2024arxivcodebook,
title = {Phishing Codebook: A Structured Framework for the Characterization of Phishing Emails},
author = {Saka, Tarini and Jain, Rachiyta and Vaniea, Kami and Kökciyan, Nadin},
year = {2024},
month = aug,
eprint = {2408.08967},
archiveprefix = {arXiv},
primaryclass = {cs.CR},
url = {https://arxiv.org/abs/2408.08967},
journal = {arXiv},
month_numeric = {8}
}
hide2023
DarkDialogs: Automated detection of 10 dark patterns on cookie dialogs [bibtex]
D. Kirkman, K. Vaniea, D.W. Woods; In Proceedings of the 8th IEEE European Symposium on Security and Privacy (EuroSP'23). 2023.
@inproceedings{kirkman2023eurosp,
author = {Kirkman, Daniel and Vaniea, Kami and Woods, Daniel W.},
booktitle = {Proceedings of the 8th IEEE European Symposium on Security and Privacy (EuroSP'23)},
title = {DarkDialogs: Automated detection of 10 dark patterns on cookie dialogs},
doi = {10.1109/EuroSP57164.2023.00055},
url = {https://tulipslab.org/papers/kirkman2023.pdf},
year = {2023},
month = jul,
pages = {847-867},
address = {Los Alamitos, CA, USA},
publisher = {IEEE Computer Society},
month_numeric = {7}
}
hide
K. Gorkovenko, A.D.G. Jenkins, K. Vaniea, D. Murray-Rust; In International Journal of Design. 2023.
@article{GorkovenkoDataEnhancedDE2023,
title = {Data-Enhanced Design: Engaging Designers in Exploratory Sensemaking with Multimodal Data},
author = {Gorkovenko, Katerina and Jenkins, Adam D. G. and Vaniea, Kami and Murray-Rust, Dave},
journal = {International Journal of Design},
volume = {17},
number = {3},
year = {2023},
publisher = {Chinese Institute of Design},
url = {https://tulipslab.org/papers/GorkovenkoDataEnhancedDE2023.pdf},
doi = {10.57698/v17i3.01}
}
hide
M. Tahaei, K. Vaniea, A. Rashid; In IEEE Security & Privacy. 2023.
@article{tahaei2023sp,
author = {Tahaei, Mohammad and Vaniea, Kami and Rashid, Awais},
journal = {IEEE Security & Privacy},
title = {Embedding Privacy Into Design Through Software Developers: Challenges and Solutions},
year = {2023},
volume = {21},
number = {1},
pages = {49-57},
doi = {10.1109/MSEC.2022.3204364},
url = {https://ieeexplore.ieee.org/document/9904426}
}
hide
N. Meng-Schneider, R. Yasa Kostas, K. Vaniea, M.K. Wolters; In Extended Abstracts of the 2023 CHI Conference on Human Factors in Computing Systems. 2023.
@inproceedings{meng2023chilbw,
author = {Meng-Schneider, Nicole and Yasa Kostas, Rabia and Vaniea, Kami and Wolters, Maria K},
title = {Multi-User Smart Speakers - A Narrative Review of Concerns and Problematic Interactions},
year = {2023},
month = apr,
isbn = {9781450394222},
publisher = {Association for Computing Machinery},
address = {New York, NY, USA},
url = {https://tulipslab.org/papers/meng2023chi.pdf},
doi = {10.1145/3544549.3585689},
abstract = {Smart speakers in multi-user spaces, such as Amazon Echos, introduce risks to both owners and anyone sharing the space. They store voice recordings of user requests, and anyone in range can potentially interact with the device. As smart speakers are usually bound to a single account, despite being shareable by design, it introduces potential tensions between users. We systematically searched the literature for findings on concerns and scenarios in which problems may arise and synthesised the resulting 20 papers in a narrative review. Owners were concerned about other users’, potentially malicious, interactions, device faults, and third party sharing. In contrast, bystanders worried about "being listened" to and a lack of awareness and protections. Our findings show a clear gap in literature on the privacy concerns of regular and incidental secondary users of smart speakers.},
booktitle = {Extended Abstracts of the 2023 CHI Conference on Human Factors in Computing Systems},
articleno = {213},
pages = {1-7},
keywords = {incidental user, multi-user, voice assistant, smart speaker, bystander},
location = {Hamburg, Germany},
series = {CHI EA '23},
month_numeric = {4}
}
hide
A. Jenkins, M. Wolters, K. Vaniea; In arXiv. 2023.
@article{jenkins2023patch,
title = {To Patch, or not To Patch? That is the Question: A Case Study of System Administrators' Online Collaborative Behaviour},
author = {Jenkins, Adam and Wolters, Maria and Vaniea, Kami},
year = {2023},
eprint = {2307.03609},
archiveprefix = {arXiv},
journal = {arXiv},
primaryclass = {cs.HC},
doi = {10.48550/arXiv.2307.03609},
url = {https://tulipslab.org/papers/jenkins2023patch.pdf}
}
hide
D. Keküllüoğlu, K. Vaniea, M.K. Wolters, W. Magdy; In Proceedings of the 2023 ACM SIGCHI Conference on Computer-Supported Cooperative Work and Social Computing (CSCW23). 2023.
@inproceedings{kekulluoglu2023cscw,
author = {Kek{\"u}ll{\"u}o{\u g}lu, Dilara and Vaniea, Kami and Wolters, Maria K. and Magdy, Walid},
booktitle = {Proceedings of the 2023 ACM SIGCHI Conference on Computer-Supported Cooperative Work and Social Computing (CSCW23)},
publisher = {Association for Computing Machinery},
title = {Twitter has a Binary Privacy Setting, are Users Aware of How It Works?},
url = {https://tulipslab.org/papers/kekulluoglu2023cscw.pdf},
doi = {10.1145/3579537},
pages = {1-18},
year = {2023}
}
hide
K. Althobaiti, M.K. Wolters, N. Alsufyani, K. Vaniea; In IEEE Access. 2023.
@article{althobaiti23,
title = {Using Clustering Algorithms to Automatically Identify Phishing Campaigns},
author = {Althobaiti, Kholoud and Wolters, Maria K. and Alsufyani, Nawal and Vaniea, Kami},
year = {2023},
month = aug,
journal = {IEEE Access},
volume = {11},
pages = {96502-96513},
doi = {10.1109/ACCESS.2023.3310810},
url = {https://tulipslab.org/papers/althobaiti2023.pdf},
month_numeric = {8}
}
hide
N. Pilavakis, A. Jenkins, N. Kokciyan, K. Vaniea; In Proceedings of the Symposium on Usable Privacy and Security (USEC'23). 2023.
@inproceedings{pilavakis2023,
author = {Pilavakis, Nikolas and Jenkins, Adam and Kokciyan, Nadin and Vaniea, Kami},
booktitle = {Proceedings of the Symposium on Usable Privacy and Security (USEC'23)},
publisher = {The Internet Society},
title = {``{I} didn't click'': What users say when reporting phishing},
url = {https://tulipslab.org/papers/pilavakis2023.pdf},
doi = {10.14722/usec.2023.233129},
year = {2023},
month = feb,
pages = {1-13},
month_numeric = {2}
}
hide2022
Can I Borrow Your ATM? Using Virtual Reality for (Simulated) In Situ Authentication Research [bibtex]
F. Mathis, K. Vaniea, M. Khamis; In Proceedings of IEEE Virtual Reality and 3D User Interfaces (VR). 2022.
@inproceedings{mathis2022insitu,
author = {Mathis, Florian and Vaniea, Kami and Khamis, Mohamed},
booktitle = {Proceedings of IEEE Virtual Reality and 3D User Interfaces (VR)},
title = {Can I Borrow Your ATM? Using Virtual Reality for (Simulated) In Situ Authentication Research},
url = {https://tulipslab.org/papers/mathisIEEEVR2022_insitu.pdf},
year = {2022},
doi = {10.1109/VR51125.2022.00049},
month = apr,
pages = {301-310},
month_numeric = {4}
}
hide
T. Saka, K. Vaniea, N. Kokciyan; In Proceedings of the 15th ACM Workshop on Artificial Intelligence and Security (AISec 2022). 2022.
@inproceedings{saka2022-aisec,
author = {Saka, Tarini and Vaniea, Kami and Kokciyan, Nadin},
booktitle = {Proceedings of the 15th ACM Workshop on Artificial Intelligence and Security (AISec 2022)},
location = {Los Angeles},
month = nov,
publisher = {Association for Computing Machinery},
title = {Context-based Clustering to Mitigate Phishing Attacks},
pages = {115-126},
doi = {10.1145/3560830.3563728},
url = {https://tulipslab.org/papers/saka2022-aisec.pdf},
year = {2022},
month_numeric = {11}
}
hide
D. Keküllüoğlu, W. Magdy, K. Vaniea; In Proceedings of The 16th International AAAI Conference on Weblogs and Social Media (ICWSM'22). 2022.
@inproceedings{kekulluoglu2022from,
archiveprefix = {arXiv},
author = {Kek{\"u}ll{\"u}o{\u g}lu, Dilara and Magdy, Walid and Vaniea, Kami},
booktitle = {Proceedings of The 16th International AAAI Conference on Weblogs and Social Media (ICWSM'22)},
eprint = {2201.10655},
month = may,
title = {From an Authentication Question to a Public Social Event: Characterizing Birthday Sharing on Twitter},
url = {https://arxiv.org/pdf/2201.10655.pdf},
doi = {10.1609/icwsm.v16i1.19309},
year = {2022},
pages = {488--499},
month_numeric = {5}
}
hide
M. Tahaei, K. Vaniea; In 1st International Workshop on Recruiting Participants for Empirical Software Engineering (RoPES'22). 2022.
@inproceedings{tahaei2022ropes,
author = {Tahaei, Mohammad and Vaniea, Kami},
booktitle = {1st International Workshop on Recruiting Participants for Empirical Software Engineering (RoPES'22)},
month = may,
title = {Lessons Learned From Recruiting Participants With Programming Skills for Empirical Privacy and Security Studies},
url = {https://tulipslab.org/papers/tahaei2022ropes.pdf},
year = {2022},
pages = {1-3},
month_numeric = {5}
}
hide
A. Jenkins, N. Kokciyan, K. Vaniea; In Proceedings of the Symposium on Usable Privacy and Security Poster Track. 2022.
@inproceedings{jenkins2022poster,
author = {Jenkins, Adam and Kokciyan, Nadin and Vaniea, Kami},
booktitle = {Proceedings of the Symposium on Usable Privacy and Security Poster Track},
month = aug,
title = {PhishED: Automated contextual feedback for reporting phishing},
url = {https://tulipslab.org/papers/soups2022-poster49_jenkins_abstract_final.pdf},
location = {San Diago, USA},
year = {2022},
pages = {1-5},
month_numeric = {8}
}
hide
M. Tahaei, K. Vaniea; In Proceedings of the SIGCHI Conference on Human Factors in Computing Systems. 2022.
@inproceedings{tahaei2022chi,
author = {Tahaei, Mohammad and Vaniea, Kami},
booktitle = {Proceedings of the SIGCHI Conference on Human Factors in Computing Systems},
month = may,
organization = {ACM},
title = {Recruiting Participants with Programming Skills: A Comparison of Four Crowdsourcing Platforms and a CS Student Mailing List},
pages = {1-15},
url = {https://tulipslab.org/papers/tahaei2022chi.pdf},
year = {2022},
doi = {10.1145/3491102.3501957},
month_numeric = {5}
}
hide
F. Mathis, J. O{\rq}Hagan, K. Vaniea, M. Khamis; In Proceedings of the International Conference on Advanced Visual Interfaces (AVI 2022). 2022.
@inproceedings{mathis2022avi,
author = {Mathis, Florian and O{\rq}Hagan, Joseph and Vaniea, Kami and Khamis, Mohamed},
booktitle = {Proceedings of the International Conference on Advanced Visual Interfaces (AVI 2022)},
title = {Stay Home! Conducting Remote Usability Evaluations of Novel Real-World Authentication Systems Using Virtual Reality},
url = {https://tulipslab.org/papers/mathis-AVI2022.pdf},
doi = {10.1145/3531073.3531087},
year = {2022},
pages = {1-9}
}
hide
D. Keküllüoğlu, K. Vaniea, W. Magdy; In Proceedings of the 2022 CHI Conference on Human Factors in Computing Systems. 2022.
@inproceedings{kekulluoglu2022switching,
author = {Kek{\"u}ll{\"u}o{\u g}lu, Dilara and Vaniea, Kami and Magdy, Walid},
title = {Understanding Privacy Switching Behaviour on Twitter},
year = {2022},
isbn = {9781450391573},
publisher = {Association for Computing Machinery},
address = {New York, NY, USA},
url = {https://vaniea.com/publication/kekulluoglu2022switching/kekulluoglu2022switching.pdf},
doi = {10.1145/3491102.3517675},
abstract = {Changing a Twitter account’s privacy setting between public and protected changes the visibility of past tweets. By inspecting the privacy setting of more than 100K Twitter users over 3 months, we noticed that over 40\% of those users changed their privacy setting at least once with around 16\% changing it over 5 times. This observation motivated us to explore the reasons why people switch their privacy settings. We studied these switching phenomena quantitatively by comparing the tweeting behaviour of users when public vs protected, and qualitatively using two follow-up surveys (n=100, n=324) to understand potential reasoning behind the observed behaviours. Our quantitative analysis shows that users who switch privacy settings mention others and share hashtags more when their setting is public. Our surveys highlighted that users turn protected to share personal content and regulate boundaries while they turn public to interact with others in ways the protected setting prevents.},
booktitle = {Proceedings of the 2022 CHI Conference on Human Factors in Computing Systems},
articleno = {31},
numpages = {14},
keywords = {Online Social Networks, Privacy, Privacy Settings, Security, Twitter},
location = {
, New Orleans, LA, USA, },
series = {CHI '22}
}
hide
M. Tahaei, T. Li, K. Vaniea; In Proceedings on Privacy Enhancing Technologies. 2022.
@article{tahaei2022pets,
author = {Tahaei, Mohammad and Li, Tianshi and Vaniea, Kami},
doi = {10.2478/popets-2022-0038},
journal = {Proceedings on Privacy Enhancing Technologies},
number = {2},
pages = {114--131},
title = {Understanding Privacy-Related Advice on Stack Overflow},
url = {https://doi.org/10.2478/popets-2022-0038; https://tulipslab.org/papers/tahaei2022pets.pdf},
volume = {2022},
year = {2022}
}
hide
F. Mathis, J. O'Hagan, M. Khamis, K. Vaniea; In Proceedings of IEEE Virtual Reality and 3D User Interfaces (VR). 2022.
@inproceedings{mathis2022VRO,
author = {Mathis, Florian and O'Hagan, Joseph and Khamis, Mohamed and Vaniea, Kami},
booktitle = {Proceedings of IEEE Virtual Reality and 3D User Interfaces (VR)},
title = {Virtual Reality Observations: Using Virtual Reality to Augment Lab-Based Shoulder Surfing Research},
url = {https://tulipslab.org/papers/mathisIEEEVR2022_VRO.pdf},
year = {2022},
doi = {10.1109/VR51125.2022.00048},
pages = {1-10}
}
hide2021
A Case Study of Phishing Incident Response in an Educational Organization [bibtex]
K. Althobaiti, A. Jenkins, K. Vaniea; In Proceedings of the ACM Conference on Computer Supported Cooperative Work and Social Computing. 2021.
@inproceedings{althobaiti2021cscw,
author = {Althobaiti, Kholoud and Jenkins, Adam and Vaniea, Kami},
booktitle = {Proceedings of the ACM Conference on Computer Supported Cooperative Work and Social Computing},
organization = {ACM},
title = {A Case Study of Phishing Incident Response in an Educational Organization},
pages = {1--32},
url = {https://tulipslab.org/papers/althobaiti2021cscw.pdf},
year = {2021}
}
hide
M. Tahaei, K. Vaniea; In ``What Can CHI Do About Dark Patterns?'' Workshop at CHI Conference on Human Factors in Computing Systems (CHI '21). 2021.
@inproceedings{tahaei2021codeLevel,
author = {Tahaei, Mohammad and Vaniea, Kami},
booktitle = {``What Can CHI Do About Dark Patterns?'' Workshop at CHI Conference on Human Factors in Computing Systems (CHI '21)},
month = may,
publisher = {University of Edinburgh},
title = {Code-Level Dark Patterns: Exploring Ad~Networks' Misleading Code Samples with Negative Consequences for Users},
url = {https://tulipslab.org/papers/tahaei2021-darkpatterns.pdf},
year = {2021},
pages = {1--5},
month_numeric = {5}
}
hide
M. Tahaei, A. Frik, K. Vaniea; In Symposium On Usable Privacy and Security (SOUPS). 2021.
@inproceedings{tahaei2021soups,
author = {Tahaei, Mohammad and Frik, Alisa and Vaniea, Kami},
booktitle = {Symposium On Usable Privacy and Security (SOUPS)},
month = aug,
title = {Deciding on Personalized Ads: Nudging Developers About User Privacy},
url = {https://tulipslab.org/papers/tahaei2021soups.pdf},
year = {2021},
month_numeric = {8}
}
hide
F. Mathis, J.H. Williamson, K. Vaniea, M. Khamis; In ACM Transactions on Computer-Human Interaction (TOCHI). 2021.
@article{mathis2020TOCHI,
address = {New York, NY, USA},
articleno = {6},
author = {Mathis, Florian and Williamson, John H. and Vaniea, Kami and Khamis, Mohamed},
doi = {10.1145/3428121},
issn = {1073-0516},
journal = {ACM Transactions on Computer-Human Interaction (TOCHI)},
month = jan,
number = {1},
numpages = {44},
publisher = {Association for Computing Machinery},
title = {Fast and Secure Authentication in Virtual Reality using Coordinated 3D Manipulation and Pointing},
url = {https://tulipslab.org/papers/mathis2020_tochi.pdf},
video = {https://www.youtube.com/watch?v=OvKPhdx1ZZA\&feature=youtu.be},
volume = {28},
year = {2021},
month_numeric = {1}
}
hide
K. Althobaiti, N. Meng, K. Vaniea; In Proceedings of the 2021 CHI Conference on Human Factors in Computing Systems. 2021.
@inproceedings{althobaiti2021chi,
author = {Althobaiti, Kholoud and Meng, Nicole and Vaniea, Kami},
month = may,
organization = {ACM},
title = {I Don't Need an Expert! Making URL Phishing Features Human Comprehensible},
url = {https://tulipslab.org/papers/althobaiti2021chi.pdf},
year = {2021},
isbn = {9781450380966},
publisher = {Association for Computing Machinery},
address = {New York, NY, USA},
doi = {10.1145/3411764.3445574},
booktitle = {Proceedings of the 2021 CHI Conference on Human Factors in Computing Systems},
articleno = {695},
numpages = {17},
pages = {1--17},
keywords = {usable privacy and security, security education, Phishing, real-time learning, decision support, phishing awareness, URL reading},
location = {Yokohama, Japan},
series = {CHI '21},
month_numeric = {5}
}
hide
F. Mathis, K. Vaniea, M. Khamis; In Proceedings of Mindtrek International Technology Conference. 2021.
@inproceedings{mathis2021mindtrek,
author = {Mathis, Florian and Vaniea, Kami and Khamis, Mohamed},
booktitle = {Proceedings of Mindtrek International Technology Conference},
doi = {10.1145/3464327.3464329},
title = {Observing Virtual Avatars: The Impact of Avatars’ Fidelity on Identifying Interactions},
url = {https://tulipslab.org/papers/mindtrek2021mathis.pdf},
year = {2021},
pages = {154--164}
}
hide
N. Meng, D. Keküllüoğlu, K. Vaniea; In Proceedings of the ACM Conference on Computer Supported Cooperative Work and Social Computing. 2021.
@inproceedings{meng2021cscw,
author = {Meng, Nicole and Kek{\"u}ll{\"u}o{\u g}lu, Dilara and Vaniea, Kami},
booktitle = {Proceedings of the ACM Conference on Computer Supported Cooperative Work and Social Computing},
journal = {Proc. ACM Hum.-Comput. Interact.},
doi = {10.1145/3449119},
month = apr,
organization = {ACM},
title = {Owning and Sharing: Privacy Perceptions of Smart Speaker Users},
url = {https://tulipslab.org/papers/meng2021cscw.pdf},
volume = {5},
year = {2021},
issn = {2573-0142},
pages = {1-29},
articleno = {45},
issue_date = {April 2021},
numpages = {29},
keywords = {multi-user, voice assistants, smart speakers, bystanders/visitors, social rules, protection mechanisms, privacy perceptions},
month_numeric = {4}
}
hide
M. Tahaei, A. Frik, K. Vaniea; In Proceedings of the 2021 CHI Conference on Human Factors in Computing Systems. 2021.
@inproceedings{tahaei2021privchamp,
author = {Tahaei, Mohammad and Frik, Alisa and Vaniea, Kami},
month = may,
organization = {ACM},
title = {Privacy Champions in Software Teams: Understanding Their Motivations, Strategies, and Challenges},
url = {https://tulipslab.org/papers/tahaei2021privchamp.pdf},
year = {2021},
isbn = {9781450380966},
publisher = {Association for Computing Machinery},
address = {New York, NY, USA},
doi = {10.1145/3411764.3445768},
booktitle = {Proceedings of the 2021 CHI Conference on Human Factors in Computing Systems},
articleno = {693},
numpages = {15},
pages = {1-15},
keywords = {user privacy, software development, privacy champions},
location = {Yokohama, Japan},
series = {CHI '21},
month_numeric = {5}
}
hide
F. Mathis, K. Vaniea, M. Khamis; In International Journal of Human--Computer Interaction. 2021.
@article{mathis2021IJHCI,
author = {Mathis, Florian and Vaniea, Kami and Khamis, Mohamed},
doi = {10.1080/10447318.2021.1949134},
eprint = {https://doi.org/10.1080/10447318.2021.1949134},
journal = {International Journal of Human--Computer Interaction},
number = {0},
pages = {1--23},
publisher = {Taylor \& Francis},
title = {Prototyping Usable Privacy and Security Systems: Insights from Experts},
url = {https://tulipslab.org/papers/mathis2021-insights.pdf},
volume = {0},
year = {2021}
}
hide
F. Mathis, K. Vaniea, M. Khamis; In Proceedings of the 2021 CHI Conference on Human Factors in Computing Systems. 2021.
@inproceedings{mathis2021chi,
author = {Mathis, Florian and Vaniea, Kami and Khamis, Mohamed},
month = may,
organization = {ACM},
title = {RepliCueAuth: Validating the Use of a lab-based Virtual Reality Setup for Evaluating Authentication Systems},
url = {https://tulipslab.org/papers/mathis2021chi.pdf},
year = {2021},
isbn = {9781450380966},
publisher = {Association for Computing Machinery},
address = {New York, NY, USA},
booktitle = {Proceedings of the 2021 CHI Conference on Human Factors in Computing Systems},
articleno = {534},
numpages = {18},
keywords = {Research Method, Virtual Reality, Usable Security, Authentication},
location = {Yokohama, Japan},
series = {CHI '21},
pages = {1-18},
doi = {10.1145/3411764.3445478},
month_numeric = {5}
}
hide
M. Tahaei, K. Vaniea, K. Beznosov, M.K. Wolters; In Proceedings of the 2021 CHI Conference on Human Factors in Computing Systems. 2021.
@inproceedings{tahaei2021SAT,
author = {Tahaei, Mohammad and Vaniea, Kami and Beznosov, Konstantin and Wolters, Maria K.},
month = may,
organization = {ACM},
title = {Security Notifications in Static Analysis Tools: Developers' Attitudes, Comprehension, and Ability to Act on Them},
url = {https://tulipslab.org/papers/tahaei2021SAT.pdf},
year = {2021},
pages = {1--17},
doi = {10.1145/3411764.3445616},
booktitle = {Proceedings of the 2021 CHI Conference on Human Factors in Computing Systems},
articleno = {691},
numpages = {17},
keywords = {static analysis tools, software developers, security notifications, usable security},
location = {Yokohama, Japan},
series = {CHI '21},
month_numeric = {5}
}
hide
M. Tahaei, K. Vaniea; In Proceedings of the SIGCHI Conference on Human Factors in Computing Systems Late Breaking Work. 2021.
@inproceedings{tahaei2021AdNetworkLBW,
author = {Tahaei, Mohammad and Vaniea, Kami},
booktitle = {Proceedings of the SIGCHI Conference on Human Factors in Computing Systems Late Breaking Work},
month = apr,
title = {``Developers are Responsible'': What Ad Networks Tell Developers About Privacy},
url = {https://tulipslab.org/papers/tahaei2021AdNetworkLBW.pdf},
year = {2021},
pages = {1-11},
articleno = {253},
doi = {10.1145/3411763.3451805},
month_numeric = {4}
}
hide2020
"Anyone Else Seeing this Error?": Community, System Administrators, and Patch Information [bibtex]
A. Jenkins, P. Kalligeros, K. Vaniea, M.K. Wolters; In Proceedings of the European Symposium on Security and Privacy (EuroSP). 2020.
@inproceedings{jenkins2020eurosp,
author = {Jenkins, Adam and Kalligeros, Pieris and Vaniea, Kami and Wolters, Maria K.},
booktitle = {Proceedings of the European Symposium on Security and Privacy (EuroSP)},
location = {Genova, Italy},
month = jun,
organization = {IEEE},
title = {"Anyone Else Seeing this Error?": Community, System Administrators, and Patch Information},
url = {https://tulipslab.org/papers/jenkins2020.pdf},
year = {2020},
month_numeric = {6}
}
hide
D. Keküllüoğlu, W. Magdy, K. Vaniea; In Proceedings of the 12th ACM Conference on Web Science. 2020.
@inproceedings{kekulluoglu2020analysing,
author = {Kek{\"u}ll{\"u}o{\u g}lu, Dilara and Magdy, Walid and Vaniea, Kami},
booktitle = {Proceedings of the 12th ACM Conference on Web Science},
title = {Analysing Privacy Leakage of Life Events on Twitter},
url = {https://tulipslab.org/papers/kekulluoglu2020.pdf},
doi = {10.1145/3394231.3397919},
year = {2020}
}
hide
M. Mossano, K. Vaniea, L. Aldag, R. Düzgün, P. Mayer, M. Volkamer; In Proceedings of the 5th IEEE European Workshop on Usable Security (EuroUSEC). 2020.
@inproceedings{mossano2020,
author = {Mossano, Mattia and Vaniea, Kami and Aldag, Lukas and D{\"u}zg{\"u}n, Reyhan and Mayer, Peter and Volkamer, Melanie},
booktitle = {Proceedings of the 5th IEEE European Workshop on Usable Security (EuroUSEC)},
title = {Analysis of publicly available anti-phishing webpages: contradicting information, lack of concrete advice and very narrow attack vector},
url = {https://tulipslab.org/papers/massano2020.pdf},
doi = {10.1109/EuroSPW51379.2020.00026},
year = {2020}
}
hide
F. Mathis, H.I. Fawaz, M. Khamis; In Proceedings of the SIGCHI Conference on Human Factors in Computing Systems. 2020.
@inproceedings{mathis2020chi2,
author = {Mathis, Florian and Fawaz, Hassan Ismail and Khamis, Mohamed},
booktitle = {Proceedings of the SIGCHI Conference on Human Factors in Computing Systems},
month = apr,
title = {Knowledge-driven Biometric Authentication in Virtual Reality},
url = {https://tulipslab.org/papers/mathis2020chi2.pdf},
year = {2020},
month_numeric = {4}
}
hide
F. Mathis, J.H. Williamson, K. Vaniea, M. Khamis; In Proceedings of the SIGCHI Conference on Human Factors in Computing Systems. 2020.
@inproceedings{mathis2020chi1,
author = {Mathis, Florian and Williamson, John H. and Vaniea, Kami and Khamis, Mohamed},
booktitle = {Proceedings of the SIGCHI Conference on Human Factors in Computing Systems},
month = apr,
title = {RubikAuth: Fast and Secure Authentication in Virtual Reality},
url = {https://tulipslab.org/papers/mathis2020chi1.pdf},
year = {2020},
month_numeric = {4}
}
hide
M. Tahaei, K. Vaniea, N. Saphra; In Proceedings of the SIGCHI Conference on Human Factors in Computing Systems. 2020.
@inproceedings{tahaei2020chi,
author = {Tahaei, Mohammad and Vaniea, Kami and Saphra, Naomi},
booktitle = {Proceedings of the SIGCHI Conference on Human Factors in Computing Systems},
month = apr,
organization = {ACM},
title = {Understanding Privacy-Related Questions on Stack Overflow},
url = {https://tulipslab.org/papers/tahaei2020SO.pdf},
year = {2020},
month_numeric = {4}
}
hide
S.S. Albakry, K. Vaniea, M.K. Wolters; In Proceedings of the 2020 CHI Conference on Human Factors in Computing Systems. 2020.
@inproceedings{albakry2020chi,
author = {Albakry, Sara S. and Vaniea, Kami and Wolters, Maria K.},
booktitle = {Proceedings of the 2020 CHI Conference on Human Factors in Computing Systems},
doi = {10.1145/3313831.3376168},
keywords = {phishing, technology usage, link destination, uniform resource locators, online security, url readability, web literacy},
location = {Honolulu, HI, USA},
month = apr,
numpages = {12},
pages = {1--12},
series = {CHI {\rq}20},
title = {What is this URL's Destination? Empirical Evaluation of Users' URL Reading},
url = {https://tulipslab.org/papers/albakry2020.pdf},
year = {2020},
month_numeric = {4}
}
hide2019
"I Don't Know Too Much About It": On the Security Mindsets of Computer Science Students [bibtex]
M. Tahaei, A. Jenkins, K. Vaniea, M.K. Wolters; In Workshop on Socio-Technical Aspects in SecuriTy (STAST). 2019.
@inproceedings{tahaei2019stast,
author = {Tahaei, Mohammad and Jenkins, Adam and Vaniea, Kami and Wolters, Maria K.},
booktitle = {Workshop on Socio-Technical Aspects in SecuriTy (STAST)},
month = sep,
title = {"I Don't Know Too Much About It": On the Security Mindsets of Computer Science Students},
url = {https://tulipslab.org/papers/On_the_Security_Mindsets_of_Computer_Science_Students.pdf},
year = {2019},
month_numeric = {9}
}
hide
K. Althobaiti, G. Rummani, K. Vaniea; In IEEE European Symposium on Security and Privacy Workshops (EuroSPW). 2019.
@inproceedings{althobaiti2019review,
author = {Althobaiti, Kholoud and Rummani, Ghaidaa and Vaniea, Kami},
booktitle = {IEEE European Symposium on Security and Privacy Workshops (EuroSPW)},
organization = {IEEE},
pages = {182--191},
title = {A Review of Human-and Computer-Facing URL Phishing Features},
url = {https://tulipslab.org/papers/althobaiti2019.pdf},
year = {2019}
}
hide
M. Tahaei, K. Vaniea; In European Workshop on Usable Security (EuroUSEC). 2019.
@inproceedings{tahaei2019survey,
author = {Tahaei, Mohammad and Vaniea, Kami},
booktitle = {European Workshop on Usable Security (EuroUSEC)},
month = jun,
organization = {IEEE},
pages = {129--138},
resources = {https://www.wiki.ed.ac.uk/display/TRG/Usable+Security+and+Privacy+for+Software+Developers},
title = {A Survey on Developer-Centred Security},
url = {https://tulipslab.org/papers/A_Survey_on_Developer_Centred_Security.pdf},
year = {2019},
month_numeric = {6}
}
hide
S. Albakry, A. Alabdullaif, K. Vaniea, M.K. Wolters; In Workshop on HCI Research and Practice in the Arab World (ArabCHI). 2019.
@inproceedings{albakry2019arab,
author = {Albakry, Sara and Alabdullaif, Aljawharah and Vaniea, Kami and Wolters, Maria K.},
booktitle = {Workshop on HCI Research and Practice in the Arab World (ArabCHI)},
month = may,
title = {Saudis' Conceptualisation of Disturbing Content on Social Media},
url = {https://vaniea.com/papers/albakry2019.pdf},
year = {2019},
month_numeric = {5}
}
hide2018
Automatic phishing detection versus user training, Is there a middle ground using XAI? [bibtex]
S. Albakry, K. Vaniea; In Proceedings of the SICSA Workshop on Reasoning, Learning and Explainability. 2018.
@inproceedings{albakry2018,
author = {Albakry, Sara and Vaniea, Kami},
booktitle = {Proceedings of the SICSA Workshop on Reasoning, Learning and Explainability},
month = jun,
title = {Automatic phishing detection versus user training, Is there a middle ground using XAI?},
url = {https://vaniea.com/papers/albakry2018.pdf},
year = {2018},
month_numeric = {6}
}
hide
K. Althobaiti, K. Vaniea, S. Zheng; In Symposium on Digital Behaviour Intervention for Cyber Security. 2018.
@inproceedings{althobaiti2018faheem,
author = {Althobaiti, Kholoud and Vaniea, Kami and Zheng, Serena},
booktitle = {Symposium on Digital Behaviour Intervention for Cyber Security},
month = apr,
title = {Faheem: Explaining URLs to people using a Slack bot},
url = {https://vaniea.com/papers/aisb2018.pdf},
year = {2018},
month_numeric = {4}
}
hide
S. Sehl, K. Vaniea; In Proceedings of the European Workshop on Usable Security (EuroUSEC'18). 2018.
@inproceedings{sehl2018,
author = {Sehl, Sibylle and Vaniea, Kami},
booktitle = {Proceedings of the European Workshop on Usable Security (EuroUSEC'18)},
title = {Permission Impossible: Teaching Firewall Configuration in a Game Environment},
url = {https://vaniea.com/papers/eurousec2018.pdf},
location = {London, UK},
doi = {10.14722/eurousec.2018.23006},
month = apr,
year = {2018},
month_numeric = {4}
}
hide2017
Capturing the Connections: Unboxing Internet of Things Devices [bibtex]
K. Vaniea, E. Tallyn, C. Speed; In arXiv. 2017.
@article{vaniea2017iot,
archiveprefix = {arXiv},
author = {Vaniea, Kami and Tallyn, Ella and Speed, Chris},
journal = {arXiv},
title = {Capturing the Connections: Unboxing Internet of Things Devices},
url = {https://arxiv.org/pdf/1708.00076.pdf},
volume = {abs/1708.00076},
doi = {10.48550/arXiv.1708.00076},
year = {2017}
}
hide
R. Hoyle, S. Das, A. Kapadia, A.J. Lee, K. Vaniea; In Proceedings of the Conference on Computer Supported Cooperative Work and Social Computing (CSCW). 2017.
@inproceedings{hoyle2017viewing,
author = {Hoyle, Roberto and Das, Srijita and Kapadia, Apu and Lee, Adam J. and Vaniea, Kami},
booktitle = {Proceedings of the Conference on Computer Supported Cooperative Work and Social Computing (CSCW)},
pages = {555--566},
title = {Viewing the Viewers: Publishers' Desires and Viewers' Privacy Concerns in Social Networks},
url = {https://tulipslab.org/papers/cscw2017.pdf},
year = {2017}
}
hide
R. Hoyle, S. Das, A. Kapadia, A.J. Lee, K. Vaniea; In Proceedings of the Conference on Human Factors in Computing Systems (CHI). 2017.
@inproceedings{hoyle2017my,
author = {Hoyle, Roberto and Das, Srijita and Kapadia, Apu and Lee, Adam J. and Vaniea, Kami},
booktitle = {Proceedings of the Conference on Human Factors in Computing Systems (CHI)},
pages = {3838--3842},
title = {Was my message read? Privacy and signaling on Facebook messenger},
url = {https://vaniea.com/papers/chi2017.pdf},
year = {2017}
}
hide2016
Debunking security-usability tradeoff myths [bibtex]
M.A. Sasse, M. Smith, C. Herley, H. Lipford, K. Vaniea; In IEEE Security and Privacy. 2016.
@article{sasse2016debunking,
author = {Sasse, M Angela and Smith, Matthew and Herley, Cormac and Lipford, Heather and Vaniea, Kami},
journal = {IEEE Security and Privacy},
number = {5},
pages = {33--39},
publisher = {IEEE},
title = {Debunking security-usability tradeoff myths},
url = {http://ieeexplore.ieee.org/abstract/document/7676175/},
volume = {14},
year = {2016}
}
hide
K. Vaniea, Y. Rashidi; In Proceedings of the SIGCHI Conference on Human Factors in Computing Systems. 2016.
@inproceedings{vaniea2016,
author = {Vaniea, Kami and Rashidi, Yasmeen},
booktitle = {Proceedings of the SIGCHI Conference on Human Factors in Computing Systems},
owner = {kvaniea},
timestamp = {2016.04.04},
title = {Tales of Software Updates: The process of updating software},
url = {https://vaniea.com/papers/chi2016.pdf},
year = {2016}
}
hide
Y. Rashidi, K. Vaniea, L.J. Camp; In Proceedings of the Workshop on Usable Security (USEC). 2016.
@inproceedings{rashidi2016usec,
author = {Rashidi, Yasmeen and Vaniea, Kami and Camp, L. Jean},
booktitle = {Proceedings of the Workshop on Usable Security (USEC)},
title = {Understanding Saudis' privacy concerns when using WhatsApp},
url = {https://vaniea.com/papers/usec2016.pdf},
year = {2016}
}
hide2015
Poster: A User Study of WhatsApp Privacy Settings Among Arab Users [bibtex]
Y. Rashidi, K. Vaniea; In Proceedings of the Symposium on Security and Privacy Poster Track. 2015.
@inproceedings{rashidi2015poster,
author = {Rashidi, Yasmeen and Vaniea, Kami},
booktitle = {Proceedings of the Symposium on Security and Privacy Poster Track},
organization = {IEEE},
title = {Poster: A User Study of WhatsApp Privacy Settings Among Arab Users},
url = {https://vaniea.com/papers/WhatsAppPoster2015.pdf},
year = {2015}
}
hide2014
Betrayed By Updates: How Negative Experiences Affect Future Security [bibtex]
K. Vaniea, E. Rader, R. Wash; In Proceedings of the SIGCHI Conference on Human Factors in Computing Systems. 2014.
@inproceedings{vaniea2014chi,
author = {Vaniea, Kami and Rader, Emilee and Wash, Rick},
booktitle = {Proceedings of the SIGCHI Conference on Human Factors in Computing Systems},
month = apr,
title = {Betrayed By Updates: How Negative Experiences Affect Future Security},
url = {https://vaniea.com/papers/chi2014.pdf},
year = {2014},
month_numeric = {4}
}
hide
R. Wash, E. Rader, K. Vaniea, M. Rizor; In Symposium On Usable Privacy and Security (SOUPS). 2014.
@inproceedings{wash2014out,
author = {Wash, Rick and Rader, Emilee and Vaniea, Kami and Rizor, Michelle},
booktitle = {Symposium On Usable Privacy and Security (SOUPS)},
pages = {89--104},
title = {Out of the loop: How automated software updates cause unintended security consequences},
url = {https://vaniea.com/papers/outoftheloop.pdf},
volume = {10},
year = {2014}
}
hide 