NOTICE: Due to a lapse in annual appropriations, most of this website is not being updated. Learn more.

Form submissions will still be accepted but will not receive responses at this time. Sections of this site for programs using non-appropriated funds (such as NVLAP) or those that are excepted from the shutdown (such as CHIPS and NVD) will continue to be updated.

U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Information Technology

Usability & human factors

Search Publications

Search Title, Abstract, Conference, Citation, Keyword or Author
  • Published Date
Displaying 26 - 50 of 126

How to Scale a Phish: An Investigation into the Use of the NIST Phish Scale

August 7, 2023
Author(s)
Shanee Dawkins, Jody Jacobs
Organizations around the world are using the NIST Phish Scale (NPS) in their phishing awareness training programs. As a new metric for measuring human phish-ing detection difficulty of phishing emails, the use of the NPS by phishing training implementers

Peering into the Phish Bowl: An Analysis of Real-World Phishing Cues

August 7, 2023
Author(s)
Lorenzo Neil, Shanee Dawkins, Jody Jacobs, Julia Sharp
Organizations use simulated phishing awareness train-ing exercises to help users identify, detect, and defend against the ever-changing phishing threat landscape. Realistic phishing emails are used to test users' ability to spot a phish from visible cues

Cybersecurity Definitions for Non-Experts

August 6, 2023
Author(s)
Lorenzo Neil, Julie Haney, Kerrianne Buchanan, Charlotte Healy
Despite the importance of cybersecurity, there is no standard definition nor common terminology for explaining cybersecurity. Existing definitions largely target academics or technical experts but not non-experts (those without cybersecurity proficiency)

Data Guardians: Behaviors and Challenges While Caring for Others' Personal Data

July 23, 2023
Author(s)
Julie Haney, Sandra Prettyman, Mary Frances Theofanos, Susanne M. Furman
Many professional domains require the collection and use of personal data. Protecting systems and data is a major concern in these settings, necessitating that workers who handle personal data under- stand and practice good security and privacy habits

Smart Home Device Loss of Support: Consumer Perspectives and Preferences

July 23, 2023
Author(s)
Julie Haney, Susanne M. Furman
Unsupported smart home devices can pose serious safety and security issues for consumers. However, unpatched and vulnerable devices may remain connected because consumers may not be alerted that their devices are no longer supported or do not understand

Analyzing Cybersecurity Definitions for Non-experts

July 4, 2023
Author(s)
Lorenzo Neil, Julie Haney, Kerrianne Buchanan
There is no standard definition for cybersecurity, with current definitions often being technically-complex and targeted at practitioners and academics. However, non-experts (those who do not have security expertise) need an understandable definition to

A Generic STS Viewer on the Web

June 13, 2023
Author(s)
Wendell Piez
In an alternate universe, XML (1998) and XSLT 1.0 (1999) were not developed so early, and did not have to wait for the rest of the web to catch up. In ours, it took two decades before other critically important pieces of the puzzle – CSS, DOM, ECMAScript

User Perceptions and Experiences with Smart Home Updates

May 22, 2023
Author(s)
Julie Haney, Susanne M. Furman
Updates may be one of the few tools consumers have to mitigate security and privacy vulnerabilities in smart home devices. However, little research has been undertaken to understand users' perceptions and experiences with smart home updates. To address

Phishing With a Net: The NIST Phish Scale and Cybersecurity Awareness

April 25, 2023
Author(s)
Shanee Dawkins, Jody Jacobs
Orienting an entire organization toward sound security practices is an important, but non-trivial undertaking. A starting point for many organizations is to build a robust security awareness program, training employees to recognize and respond to security

LabelVizier: Interactive Validation and Relabeling for Technical Text Annotations

March 30, 2023
Author(s)
Xiaoyu Zhang, Xiwei Xuan, Rachael Sexton, Alden A. Dima
With the rapid accumulation of text data brought forth by advances in data-driven techniques, the task of extracting "data annotations"—concise, high-quality data summaries from unstructured raw text—has become increasingly important. Researchers in the

Users Are Not Stupid: Six Cyber Security Pitfalls Overturned

March 16, 2023
Author(s)
Julie Haney
The skilled and dedicated professionals who strive to improve cyber security may unwittingly fall victim to misconceptions and pitfalls that hold customers and users back from reaching their full potential of being active partners in security. These

Towards Improved Replicability of Human Studies in Human-Robot Interaction: Recommendations for Formalized Reporting

March 13, 2023
Author(s)
Shelly Bagchi, Patrick Holthaus, Gloria Beraldo, Emmanuel Senft, Daniel Hernandez Garcia, Zhao Han, Suresh Kumaar Jayaraman, Alessandra Rossi, Connor Esterwood, Antonio Andriella, Paul Pridham
In this paper, we present a proposed format for reporting human studies in Human-Robot Interaction (HRI). We specifically call out details which are often overlooked or left out of conference and journal papers due to space constraints, and propose a

Handout: Users Are Not Stupid: 6 Cybersecurity Pitfalls Overturned

January 30, 2023
Author(s)
Julie Haney, Susanne M. Furman
The cybersecurity community tends to focus and depend on technology to solve today's cybersecurity problems, often without taking into consideration the human element - the key individual and social factors impacting cybersecurity adoption. This handout

Voices of First Responders: Communication Center & 9-1-1 Services

January 30, 2023
Author(s)
Shanee Dawkins, Yee-Yin Choong, Kerrianne Buchanan, Sandra Spickard-Prettyman
The goal of the National Institute of Standards and Technology's (NIST) Public Safety Communications Research (PSCR) program's Usability Team was to provide guidance on the usability of public safety communication technology. Toward that end, the PSCR

Voices of First Responders: Emergency Medical Services

January 30, 2023
Author(s)
Shanee Dawkins, Yee-Yin Choong, Kerrianne Buchanan, Sandra Spickard-Prettyman
The goal of the National Institute of Standards and Technology's (NIST) Public Safety Communications Research (PSCR) program's Usability Team was to provide guidance on the usability of public safety communication technology. Toward that end, the PSCR

Voices of First Responders: Fire Service

January 30, 2023
Author(s)
Shanee Dawkins, Yee-Yin Choong, Kerrianne Buchanan, Sandra Spickard-Prettyman
The goal of the National Institute of Standards and Technology's (NIST) Public Safety Communications Research (PSCR) program's Usability Team was to provide guidance on the usability of public safety communication technology. Toward that end, the PSCR
Was this page helpful?