CMU logo

Usable Privacy and Security

Modern society depends on computer systems being highly reliable. However, in recent years, we have seen a growing number of severe privacy and security failures due to human factors issues, including: hard-to-use interfaces, incorrect mental models, and the overall burden of high security. 
 

The goal of Usable Privacy and Security is to make these systems more reliable in practice by designing, building, and evaluating systems that consider the human element, drawing on ideas from cognitive psychology, social psychology, interaction design, and more. We work closely with campus-wide initiatives such as CyLab in designing for and studying privacy and security.


Students who want to learn more about this HCI research area might be interested in the following HCII courses: 

Faculty Researchers

Laura Dabbish

Sauvik Das

Cleotilde Gonzalez

Jason Hong

  • the CSCW 2025 logo on a large screen on stage at the front of a conference

    CMU at CSCW 2025

    NEWS

    Carnegie Mellon University authors contributed to 27 papers accepted to the 2025 ACM Conference on Computer-Supported Cooperative Work and...

    View Details
  • Pink and blue earmuffs placed on a microphone.

    Protecting Audio Privacy at the Source

    NEWS

    Sound is a powerful source of information. By training algorithms to identify distinct sound signatures, sound can reveal what a person is...

    View Details
  • CHI 2024 logo with the theme Surfing the World May 11-16, 2024

    CMU at CHI 2024

    NEWS

    Researchers from the Human-Computer Interaction Institute (HCII) and several other Carnegie Mellon University schools and disciplines cont...

    View Details
  • ANTprivacy.org provides thousands of charts, providing visitors with an easy-to-understand roadmap of how apps collect and share data. In this example, the chart highlights TikTok’s data collection practices, revealing that the social media app collects network, device, and general data, which is then sent to four cloud services owned by a total of three companies.

    New website highlights thousands of Android apps’ data collection practices

    NEWS

    Researchers at Carnegie Mellon University have launched a new website, offering Android users an easy and convenient way to see how their ...

    View Details
  • screenshot of the Android Network Traces website with a table of tracing info about Meta apps

    Android Network Traces

    PROJECT

    Smartphone apps collect and send a great deal of data about us to third-party websites, but what are they collecting and where are they sending it?...

    View Details
  • CyLab researchers will present two papers at CHI 2022 that examine Apple's privacy nutrition labels.

    CyLab Researchers Investigate Apple's Privacy Labels

    NEWS

    CyLab researchers will present two papers at the upcoming ACM CHI Conference on Human Factors in Computing Systems that examine Apple's pr...

    View Details
  • Researchers in the Smart Sensing for Humans Lab have shown that data collected from sensors in smartwatches can quickly train a millimeter wave doppler to recognize human movements and behaviors.

    SMASH Lab Uses Wearables To Train New Privacy-Preserving Sensors

    NEWS

    Data about home sales likely won't help someone looking for a car, just like information about basketball won't help someone playing baseb...

    View Details
  • A blue bar chart of the 15 most shared accounts, and percent of people sharing them

    Account sharing sheds light on social cybersecurity

    NEWS

    Visit the original blog post on the Center for Informed Democracy & Social - cybersecurity (IDeaS) website.

    View Details

  • Social Cybersecurity

    PROJECT

    Our research into the human factors of cybersecurity focuses on people as social actors whose security behaviors are influenced by their relationships, co...

    View Details
Use this link to add Usable Privacy and Security to your RSS feed reader of choice.
Back to Top