10.1184/R1/6619373.v1 A. Chris Long A. Chris Long Courtney Moskowitz Courtney Moskowitz Greg Ganger Greg Ganger A Prototype User Interface for Coarse-Grained Desktop Access Control (CMU-CS-03-200) Carnegie Mellon University 2003 User interface security desktop low-fidelity prototyping role-based access control sandboxing compartmented mode workstation 2003-11-01 00:00:00 Journal contribution https://kilthub.cmu.edu/articles/journal_contribution/A_Prototype_User_Interface_for_Coarse-Grained_Desktop_Access_Control_CMU-CS-03-200_/6619373 Viruses, trojan horses, and other malware are a growing problem for computer users, but current tools and research do not adequately aid users in fighting these threats. One approach to increasing security is to partition all applications and data based on general task types, or “roles,” such as “Personal,” “Work,” and “Communications.” This can limit the effects of malware to a single role rather than allowing it to affect the entire computer. We are developing a prototype to investigate the usability of this security model. Our initial investigation uses cognitive walkthrough and think-aloud user studies of paper prototypes to look at this model in the context of realistic tasks, and to compare different user interface mechanisms for managing data and applications in a role-based system. For most participants, our interface was simple to understand and use. In addition to a security model that is intrinsically useful, we believe development of this system will inform issues in the design and implementation of usable security interfaces, such as refinement of design guidelines.