Why Johnny Still, Still Can't Encrypt: Evaluating the Usability of a   Modern PGP Client

Scott Ruoti; Jeff Andersen; Daniel Zappala; Kent Seamons

arXiv:1510.08555·cs.CR·January 15, 2016·32 cites

Why Johnny Still, Still Can't Encrypt: Evaluating the Usability of a Modern PGP Client

Scott Ruoti, Jeff Andersen, Daniel Zappala, Kent Seamons

PDF

Open Access

TL;DR

This study evaluates the usability of Mailvelope, a modern PGP client, revealing that despite technological advances, PGP remains difficult for average users to adopt effectively.

Contribution

The paper provides empirical evidence on the persistent usability issues of modern PGP tools through a laboratory user study with Mailvelope.

Findings

01

PGP remains largely unusable for the general public

02

Users encounter significant pain points when using Mailvelope

03

Future PGP systems need improved usability features

Abstract

This paper presents the results of a laboratory study involving Mailvelope, a modern PGP client that integrates tightly with existing webmail providers. In our study, we brought in pairs of participants and had them attempt to use Mailvelope to communicate with each other. Our results shown that more than a decade and a half after \textit{Why Johnny Can't Encrypt}, modern PGP tools are still unusable for the masses. We finish with a discussion of pain points encountered using Mailvelope, and discuss what might be done to address them in future PGP systems.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsUsability and User Interface Design · Peer-to-Peer Network Technologies · Web Data Mining and Analysis