Publications

Mobile Privacy & Security

• 50 Ways to Leak Your Data: An Exploration of Apps’ Circumvention of the Android Permissions System (USENIX Sec ’19)
• On The Ridiculousness of Notice and Consent: Contradictions in App Privacy Policies (ConPro ’19)
• Do You Get What You Pay For? Comparing The Privacy Behaviors of Free vs. Paid Apps (ConPro ’19)
• “Won’t Somebody Think of the Children?” Examining COPPA Compliance at Scale (PETS ’18)
• Contextualizing Privacy Decisions for Better Prediction (and Protection) (CHI ’18)
• TurtleGuard: Helping Android Users Apply Contextual Privacy Preferences (SOUPS ’17)
• The Feasibility of Dynamically Granted Permissions: Aligning Mobile Privacy with User Preferences (Oakland ’17)
• “Is Our Children’s Apps Learning?” Automatically Detecting COPPA Violations (ConPro ’17)
• Keep on Lockin’ in the Free World: A Multi-National Comparison of Smartphone Locking (CHI ’16)
• The Anatomy of Smartphone Unlocking: A Field Study of Android Lock Screens (CHI ’16)

Web Privacy & Security

• A Promise Is A Promise: The Effect Of Commitment Devices On Computer Security Intentions (CHI ’19)
• The Accuracy of the Demographic Inferences Shown on Google’s Ad Settings (WPES ’18)
• Better Late(r) than Never: Increasing Cyber-Security Compliance by Reducing Present Bias (WEIS ’18)
• Quantifying Users’ Beliefs about Software Updates (USEC ’18)
• An Experience Sampling Study of User Reactions to Browser Warnings in the Field (CHI ’18)
• A Usability Evaluation of Tor Launcher (PETS ’17)
• Let’s Go in for a Closer Look: Observing Passwords in Their Natural Habitat (CCS ’17)
• Personalized Security Messaging: Nudges for Compliance with Browser Warnings (EuroUSEC ’17)
• The Teaching Privacy Curriculum (SIGCSE ’16)
• Do or Do Not, There Is No Try: User Engagement May Not Improve Security Outcomes (SOUPS ’16)

Wearable & Ubiquitous Computing

• Privacy and Security Threat Models and Mitigation Strategies of Older Adults (SOUPS ’19)
• Privacy Attitudes of Smart Speaker Users (PETS ’19)
• Information Design in An Aged Care Context (PervasiveHealth ’19)
• “What Can’t Data Be Used For?” Privacy Expectations about Smart TVs in the U.S. (EuroUSEC ’18)
• Information Disclosure Concerns in The Age of Wearable Computing (USEC ’16)
• Somebody’s Watching Me? Assessing the Effectiveness of Webcam Indicator Lights (CHI ’15)
• Is This Thing On? Crowdsourcing Privacy Indicators for Ubiquitous Sensing Platforms (CHI ’15)