RE: another question about the average user from Close, Tyler J. on 2007-01-22 (public-wsc-wg@w3.org from January 2007)

From: Close, Tyler J. <tyler.close@hp.com>
Date: Mon, 22 Jan 2007 12:30:16 -0600
To: "W3 Work Group" <public-wsc-wg@w3.org>
Message-ID: <08CA2245AFCF444DB3AC415E47CC40AF69405F@G3W0072.americas.hpqcorp.net>

Hi Maritza,
 
I think we put the public kiosk scenario out of scope because we're not
standing in the right place to handle it, not because we don't think
it's an important problem. To really solve this problem, you need the
cooperation of the operating system. See:
 
http://www.w3.org/2006/WSC/drafts/note/Overview.html#kiosk
 
Tyler

________________________________

From: public-wsc-wg-request@w3.org [mailto:public-wsc-wg-request@w3.org]
On Behalf Of Maritza Johnson
Sent: Monday, January 22, 2007 9:24 AM
To: W3 Work Group
Subject: Re: another question about the average user



Hello all, 

I've noticed when talking about use cases we're sometimes inclined to
leave out the case of a user conducting personal/sensitive transactions
on a public terminal. Most say we don't need to include the case of
users on a shared/public machine because people don't carry out
sensitive transactions on them ( and it hasn't been from just one
person, I've heard it from a number of people in the past few months).
As security minded people we know not to do this, but I really don't
think this is common knowledge.

 I'd like to argue that the average user does not see a difference
between the internet as they access it on their personal machine, and
the internet as they access it from a shared machine. I haven't seen any
data which supports either side, I'm making this claim completely based
on my own observations. 

Has anyone seen any work that has explored this question?  If not, I
think it'd be interesting to add it to the user study for getting a
better idea of the average user. 

Questions to add might be:
- Would you carry out this transaction at an Internet cafe? Why/Why not?
- Choose the answer that fits:
If you checked your bank statement at an internet cafe you would
A) Close the window afterward using the X  ( might not actually end the
session)
B) Close the browser from the menu
C) Log out on the bank's web page then close the browser when finished
D) I wouldn't do this






- Maritza

http://www.cs.columbia.edu/~maritzaj/

Received on Monday, 22 January 2007 18:30:28 UTC