I remain constant in my opinion that #infosec UX papers that elide constructive research should be denied publication; where's the benefit?https://twitter.com/qrs/status/868113080861020160 …
You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
Most people designing security have so little understanding of how people behave that things don't get better. I hope eye-opening will help.
Would it not be better to give implementors proof-of-concepts of what does work, rather than leave them floundering in the dark?
Were you also over the moon about the original Why Johnny Can't Encrypt, or any other "devs can't UX" paper in the last two decades?
Point being, papers like this keep being published because of what Alec said: where's the constructive research? Where's what *to* do?
Problem is, "comically poor usability" translates to "you're doing it wrong" far too quickly in tech
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.