Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

We are building a provable archive!
A lock ( Dot gov ) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

Human-Centered Cybersecurity

Project Links

Overview Events Publications

Cryptography

Although cryptography is an essential component of modern computing, implementing cryptography correctly is a non-trivial undertaking, often resulting in developers making errors and introducing vulnerabilities into their cryptographic products.

Our cryptographic research is concerned with creating a baseline understanding of the practices and challenges of organizations that are developing products that use cryptography. This new understanding can help improve the assurance of cryptographic tools and the usability of cryptographic resources, such as standards and libraries.

Publications

Organizational Cryptographic Product Development

Papers

Organizational Views of NIST Cryptographic Standards and Testing and Validation Programs – Julie Haney, Mary Theofanos, Yasemin Acar, & Sandra S. Prettyman. NISTIR 8241 (2018)

"We make it a big deal in the company": Security Mindsets in Organizations that Develop Cryptographic Products – Julie M. Haney, Mary F. Theofanos, Yasemin Acar & Sandra S. Prettyman. Proceedings of the Symposium on Usable Privacy and Security (SOUPS) (2018).

Organizational Practices in Cryptographic Development and Testing – Julie M. Haney, Simson L. Garfinkel, & Mary F. Theofanos. Proceedings of the IEEE Conference on Communications and Network Security (CNS) (2017).

Presentations

Crypto Reading Club 2021-12-15: "We make it a big deal in the company": Security Mindsets in Organizations that Develop Cryptographic Products - Julie Haney (2021)

Usable Key Management

Presentations

Usability and Key Management – Mary Theofanos (Jun 8, 2009)

Project Links

Overview Events Publications

Additional Pages

About Our Team Research Areas Authentication Cryptography Cybersecurity Adoption, Awareness, & Training Human-Centered Cybersecurity (General) Internet of Things Phishing Privacy User Perceptions & Behaviors Voting Youth Security & Privacy

Contacts

NIST Human-Centered Cybersecurity
human-cybersec@nist.gov

Julie Haney
julie.haney@nist.gov

Group

Information Access Division

Topics

Security and Privacy: authentication, behavior, cryptography, general security & privacy, privacy, security programs & operations, usability

Applications: cybersecurity education, cybersecurity workforce, Internet of Things, voting

Additional Pages

About Our Team Research Areas Authentication Cryptography Cybersecurity Adoption, Awareness, & Training Human-Centered Cybersecurity (General) Internet of Things Phishing Privacy User Perceptions & Behaviors Voting Youth Security & Privacy

Contacts

NIST Human-Centered Cybersecurity
human-cybersec@nist.gov

Julie Haney
julie.haney@nist.gov

Group

Information Access Division

Topics

Security and Privacy: authentication, behavior, cryptography, general security & privacy, privacy, security programs & operations, usability

Applications: cybersecurity education, cybersecurity workforce, Internet of Things, voting

Created November 17, 2016, Updated November 16, 2023