Syllabus

The syllabus can be found here: <link>

Instructors

Serge Egelman, egelman@cs.berkeley.edu
Maritza Johnson, maritzaj@ischool.berkeley.edu

Course Schedule

Unit 1: Usability and Security Systems

Assignment:
Assignment 1: Describe a prior poor usability experience.

PDF Download
Assignment 1

Synchronous Content:
[Description of what to prepare for]


Unit 2: Studying Decision Making

Assignment:
Assignment 2: Complete IRB training.

PDF Download
Assignment 2

Synchronous Content:

We will spend time in small groups or as a class discussing the questions below. Please spend a few minutes writing down your thoughts to each of the questions and be prepared to share them with the class.

Discussion questions:

  • What are some examples of security interfaces that you use in your daily life that lead to irrational behaviors?
  • What specific biases might impact computer security decision-making and how?
  • What sort of problems are IRBs likely to prevent?
  • What problems are they unlikely to prevent?
  • Should private companies use IRBs for their human-subjects research?

Unit 3: Research Methods (Experimental)

Assignment:
Assignment 3: Evaluate an experiment.

PDF Download
Assignment 3

Synchronous Content:

We will spend time in small groups or as a class discussing the questions below. Please spend a few minutes writing down your thoughts to each of the questions and be prepared to share them with the class.

Discussion question:
Imagine you are the head of engineering for a software company. Based on reports from customers, you are aware of some usability issues in the latest version of your product. How would you go about designing a study to determine how prevalent this problem is across your user base?


Unit 4: Research Methods (Descriptive and Relational)

No assignment this week.

Synchronous Content:
[Description of what to prepare for]


Unit 5: Statistics

No assignment this week.

Synchronous Content:
[Description of what to prepare for]


Unit 6: Usable Security

Assignment:
Assignment 4: Heuristic evaluation of a web browser feature

PDF Download
Assignment 4

Synchronous Content:
[Description of what to prepare for]


Unit 7: Privacy

No assignment this week.

Synchronous Content:

[Description of what to prepare for]

Unit 8:

Assignment:
Project proposal

Synchronous Content:
[Description of what to prepare for]


Unit 9: Authentication

Assignment:
Assignment 5 is due
[Design authentication system for a website (e.g., explain how passwords are stored, reset, etc.)]

PDF Download
Assignment 5

Synchronous Content:
[Description of what to prepare for]


Unit 10: Access Control

No assignment this week.

Synchronous Content:
[Description of what to prepare for]


Unit 11: Warnings

Assignment:
Assignment 6 is due
[Evaluate a warning.]

PDF Download
Assignment 6

Synchronous Content:
[Description of what to prepare for]


Unit 12: Application Permissions

Assignment:
Assignment 7: Paper summary

PDF Download
Assignment 7

Synchronous Content:
[Description of what to prepare for]


Unit 13: Secure Communication

Assignment:
Assignment 8: Paper summary

PDF Download
Assignment 8

Synchronous Content:
[Description of what to prepare for]


Unit 14: Privacy Policies

Assignment:
Final project due.

Synchronous Content:
We will spend time in small groups or as a class discussing the questions below. Please spend a few minutes writing down your thoughts to each of the questions and be prepared to share them with the class.

Discussion question:
What are the “essential” elements of privacy policies?

Activity:
Use AppCensus (search.appcensus.io) to identify apps that are violating their own privacy policies.