U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.


We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

This is an archive
(replace .gov by .rip)

Usable Cybersecurity Research at NIST
March 27, 2019

Cybersecurity and usability must coexist. Systems that prioritize usability over a strong security posture may fall prey to increasingly sophisticated cyber-attacks that inevitably make the system inoperable. However, the opposite holds true as well; protocols that are too strict may secure a system but render it so burdensome to use that users will intentionally circumvent security measures.

The NIST Usable Cybersecurity team brings together experts in diverse disciplines to conduct research at the intersection of human factors, human-computer interaction, cognitive psychology, and cybersecurity. The team’s goal is to provide actionable guidance for policymakers, system engineers, and security professionals who want to incorporate usability into their cybersecurity decisions, processes, and products. Recent research focus areas include: authentication, usable cryptography, phishing, Internet of Things (IoT), security adoption, and users’ security and privacy perceptions and behaviors.

Visit the newly updated Usable Cybersecurity webpages for more details on research areas and publications.

Related Topics

Security and Privacy: authentication, behavior, privacy, usability

Created March 27, 2019, Updated June 22, 2020