Publications

Also see my dblp, ACM Author, ORCHID, and Google Scholar profiles.

Adam Jenkins, Linsen Liu, Maria K. Wolters, Kami Vaniea (2024). Not as easy as just update: Survey of System Administrators and Patching Behaviours. In CHI'24.

PDF Cite Project Video DOI

Kholoud Althobaiti, Maria K. Wolters, Nawal Alsufyani, Kami Vaniea (2023). Using Clustering Algorithms to Automatically Identify Phishing Campaigns. In IEEE Access.

PDF Cite Project DOI

Daniel Kirkman, Kami Vaniea, Daniel W. Woods (2023). DarkDialogs: Automated detection of 10 dark patterns on cookie dialogs. In Proceedings of the 8th IEEE European Symposium on Security and Privacy (EuroSP'23).

PDF Cite Dataset DOI

Dilara Keküllüoglu, Kami Vaniea, Maria K. Wolters, Walid Magdy (2023). Twitter has a Binary Privacy Setting, are Users Aware of How It Works?. In Proceedings of the 2023 ACM SIGCHI Conference on Computer-Supported Cooperative Work and Social Computing (CSCW23).

PDF Cite Project DOI

Nicole Meng-Schneider, Rabia Yasa Kostas, Kami Vaniea, Maria K Wolters (2023). Multi-User Smart Speakers - A Narrative Review of Concerns and Problematic Interactions. In Extended Abstracts of the 2023 CHI Conference on Human Factors in Computing Systems.

PDF Cite Project Poster DOI

Nikolas Pilavakis, Adam Jenkins, Nadin Kokciyan, Kami Vaniea (2023). "I didn't click": What users say when reporting phishing. In Proceedings of the Symposium on Usable Privacy and Security (USEC'23).

PDF Cite Project Project DOI

Adam Jenkins, Maria K. Wolters, Kami Vaniea (2023). To Patch, or not To Patch? That is the Question: A Case Study of System Administrators' Online Collaborative Behaviour. arXiv.

PDF Cite Project DOI

Mohammad Tahaei, Kami Vaniea, Awais Rashid (2023). Embedding Privacy Into Design Through Software Developers: Challenges and Solutions. In IEEE Security & Privacy.

PDF Cite Project DOI

Katerina Gorkovenko, Adam Jenkins, Kami Vaniea, Dave Murray-Rust (2023). Data-Enhanced Design: Engaging Designers in Exploratory Sensemaking with Multimodal Data. In International Journal of Design.

PDF Cite DOI

Tarini Saka, Kami Vaniea, Nadin Kokciyan (2022). Context-based Clustering to Mitigate Phishing Attacks. In Proceedings of the 15th ACM Workshop on Artificial Intelligence and Security (AISec 2022).

PDF Cite Project Project DOI

Adam Jenkins, Nadin Kokciyan, Kami Vaniea (2022). PhishED: Automated contextual feedback for reporting phishing. In Proceedings of the Symposium on Usable Privacy and Security Poster Track.

PDF Cite Project Project

Mohammad Tahaei, Kami Vaniea (2022). Recruiting Participants with Programming Skills: A Comparison of Four Crowdsourcing Platforms and a CS Student Mailing List. In Proceedings of the SIGCHI Conference on Human Factors in Computing Systems.

PDF Cite Dataset Project Video DOI

Mohammad Tahaei, Kami Vaniea (2022). Lessons Learned From Recruiting Participants With Programming Skills for Empirical Privacy and Security Studies. In 1st International Workshop on Recruiting Participants for Empirical Software Engineering (RoPES'22).

PDF Cite Project

Dilara Keküllüoglu, Walid Magdy, Kami Vaniea (2022). From an Authentication Question to a Public Social Event: Characterizing Birthday Sharing on Twitter. In Proceedings of The 16th International AAAI Conference on Weblogs and Social Media (ICWSM'22).

PDF Cite Project DOI

Dilara Keküllüoglu, Kami Vaniea, Walid Magdy (2022). Understanding Privacy Switching Behaviour on Twitter. In Proceedings of the CHI Conference on Human Factors in Computing Systems.

PDF Cite Project Video DOI

Florian Mathis, Kami Vaniea, Mohamed Khamis (2022). Can I Borrow Your ATM? Using Virtual Reality for (Simulated) In Situ Authentication Research. In Proceedings of IEEE Virtual Reality and 3D User Interfaces (VR).

PDF Cite Project DOI

Florian Mathis, Joseph O'Hagan, Mohamed Khamis, Kami Vaniea (2022). Virtual Reality Observations: Using Virtual Reality to Augment Lab-Based Shoulder Surfing Research. In Proceedings of IEEE Virtual Reality and 3D User Interfaces (VR).

PDF Cite Project DOI

Mohammad Tahaei, Tianshi Li, Kami Vaniea (2022). Understanding Privacy-Related Advice on Stack Overflow. In Proceedings on Privacy Enhancing Technologies.

PDF Cite Project DOI

Florian Mathis, Joseph O'Hagan, Kami Vaniea, Mohamed Khamis (2022). Stay Home! Conducting Remote Usability Evaluations of Novel Real-World Authentication Systems Using Virtual Reality. In Proceedings of the International Conference on Advanced Visual Interfaces (AVI 2022).

PDF Cite Project DOI

Mohammad Tahaei, Alisa Frik, Kami Vaniea (2021). Deciding on Personalized Ads: Nudging Developers About User Privacy. In Symposium On Usable Privacy and Security (SOUPS).

PDF Cite Dataset Project Video

Mohammad Tahaei, Kami Vaniea, Konstantin Beznosov, Maria K. Wolters (2021). Security Notifications in Static Analysis Tools: Developers' Attitudes, Comprehension, and Ability to Act on Them. In Proceedings of the 2021 CHI Conference on Human Factors in Computing Systems.

PDF Cite Project DOI

Florian Mathis, Kami Vaniea, Mohamed Khamis (2021). RepliCueAuth: Validating the Use of a lab-based Virtual Reality Setup for Evaluating Authentication Systems. In Proceedings of the 2021 CHI Conference on Human Factors in Computing Systems.

PDF Cite Project DOI

Mohammad Tahaei, Alisa Frik, Kami Vaniea (2021). Privacy Champions in Software Teams: Understanding Their Motivations, Strategies, and Challenges. In Proceedings of the 2021 CHI Conference on Human Factors in Computing Systems.

PDF Cite Project DOI

Kholoud Althobaiti, Nicole Meng-Schneider, Kami Vaniea (2021). I Don't Need an Expert! Making URL Phishing Features Human Comprehensible. In Proceedings of the 2021 CHI Conference on Human Factors in Computing Systems.

PDF Cite DOI

Mohammad Tahaei, Kami Vaniea (2021). Code-Level Dark Patterns: Exploring Ad~Networks' Misleading Code Samples with Negative Consequences for Users. In ``What Can CHI Do About Dark Patterns?’’ Workshop at CHI Conference on Human Factors in Computing Systems (CHI ‘21).

PDF Cite Project

Nicole Meng-Schneider, Dilara Keküllüoglu, Kami Vaniea (2021). Owning and Sharing: Privacy Perceptions of Smart Speaker Users. In Proceedings of the ACM Conference on Computer Supported Cooperative Work and Social Computing.

PDF Cite Project DOI

Mohammad Tahaei, Kami Vaniea (2021). "Developers are Responsible": What Ad Networks Tell Developers About Privacy. In Proceedings of the SIGCHI Conference on Human Factors in Computing Systems Late Breaking Work.

PDF Cite Project DOI

Florian Mathis, Kami Vaniea, Mohamed Khamis (2021). Prototyping Usable Privacy and Security Systems: Insights from Experts. In International Journal of Human–Computer Interaction.

PDF Cite Project DOI

Florian Mathis, Kami Vaniea, Mohamed Khamis (2021). Observing Virtual Avatars: The Impact of Avatars’ Fidelity on Identifying Interactions. In Proceedings of Mindtrek International Technology Conference.

PDF Cite Project DOI

Florian Mathis, John H. Williamson, Kami Vaniea, Mohamed Khamis (2021). Fast and Secure Authentication in Virtual Reality using Coordinated 3D Manipulation and Pointing. In ACM Transactions on Computer-Human Interaction (TOCHI).

PDF Cite Project DOI

Kholoud Althobaiti, Adam Jenkins, Kami Vaniea (2021). A Case Study of Phishing Incident Response in an Educational Organization. In Proceedings of the ACM Conference on Computer Supported Cooperative Work and Social Computing.

PDF Cite

Adam Jenkins, Pieris Kalligeros, Kami Vaniea, Maria K. Wolters (2020). "Anyone Else Seeing this Error?": Community, System Administrators, and Patch Information. In Proceedings of the European Symposium on Security and Privacy (EuroSP).

PDF Cite Project Video

Sara S. Albakry, Kami Vaniea, Maria K. Wolters (2020). What is this URL's Destination? Empirical Evaluation of Users' URL Reading. In Proceedings of the 2020 CHI Conference on Human Factors in Computing Systems.

PDF Cite Project Video DOI

Mohammad Tahaei, Kami Vaniea, Naomi Saphra (2020). Understanding Privacy-Related Questions on Stack Overflow. In Proceedings of the SIGCHI Conference on Human Factors in Computing Systems.

PDF Cite Project

Florian Mathis, John H. Williamson, Kami Vaniea, Mohamed Khamis (2020). RubikAuth: Fast and Secure Authentication in Virtual Reality. In Proceedings of the SIGCHI Conference on Human Factors in Computing Systems.

PDF Cite Project

Florian Mathis, Hassan Ismail Fawaz, Mohamed Khamis (2020). Knowledge-driven Biometric Authentication in Virtual Reality. In Proceedings of the SIGCHI Conference on Human Factors in Computing Systems.

PDF Cite

Mattia Mossano, Kami Vaniea, Lukas Aldag, Reyhan D{\"u}zg{\"u}n, Peter Mayer, Melanie Volkamer (2020). Analysis of publicly available anti-phishing webpages: contradicting information, lack of concrete advice and very narrow attack vector. In Proceedings of the 5th IEEE European Workshop on Usable Security (EuroUSEC).

PDF Cite Project DOI

Dilara Keküllüoglu, Walid Magdy, Kami Vaniea (2020). Analysing Privacy Leakage of Life Events on Twitter. In Proceedings of the 12th ACM Conference on Web Science.

PDF Cite Project Video DOI

Mohammad Tahaei, Adam Jenkins, Kami Vaniea, Maria K. Wolters (2019). "I Don't Know Too Much About It": On the Security Mindsets of Computer Science Students. In Workshop on Socio-Technical Aspects in SecuriTy (STAST).

PDF Cite Project

Mahaei, Kami Vaniea (2019). A Survey on Developer-Centred Security. In European Workshop on Usable Security (EuroUSEC) co-located with The IEEE European Symposium on Security and Privacy (EuroS&PW).

PDF Cite Dataset Project Slides

Sara S. Albakry, Aljawharah Alabdullaif, Kami Vaniea, Maria K. Wolters (2019). Saudis' Conceptualisation of Disturbing Content on Social Media. In Workshop on HCI Research and Practice in the Arab World (ArabCHI).

PDF Cite

Kholoud Althobaiti, Ghaidaa Rummani, Kami Vaniea (2019). A Review of Human-and Computer-Facing URL Phishing Features. In IEEE European Symposium on Security and Privacy Workshops (EuroSPW).

PDF Cite

Sara S. Albakry, Kami Vaniea (2018). Automatic phishing detection versus user training, Is there a middle ground using XAI?. In Proceedings of the SICSA Workshop on Reasoning, Learning and Explainability.

PDF Cite Project

Sibylle Sehl, Kami Vaniea (2018). Permission Impossible: Teaching Firewall Configuration in a Game Environment. In Proceedings of the European Workshop on Usable Security (EuroUSEC'18).

PDF Cite DOI

Kholoud Althobaiti, Kami Vaniea, Serena Zheng (2018). Faheem: Explaining URLs to people using a Slack bot. In Symposium on Digital Behaviour Intervention for Cyber Security.

PDF Cite

Roberto Hoyle, Srijita Das, Apu Kapadia, Adam J. Lee, Kami Vaniea (2017). Was my message read? Privacy and signaling on Facebook messenger. In Proceedings of the Conference on Human Factors in Computing Systems (CHI).

PDF Cite Dataset

Roberto Hoyle, Srijita Das, Apu Kapadia, Adam J. Lee, Kami Vaniea (2017). Viewing the Viewers: Publishers' Desires and Viewers' Privacy Concerns in Social Networks. In Proceedings of the Conference on Computer Supported Cooperative Work and Social Computing (CSCW).

PDF Cite

Kami Vaniea, Ella Tallyn, Chris Speed (2017). Capturing the Connections: Unboxing Internet of Things Devices. In arXiv.

PDF Cite DOI

Yasmeen Rashidi, Kami Vaniea, L. Jean Camp (2016). Understanding Saudis' privacy concerns when using WhatsApp. In Proceedings of the Workshop on Usable Security (USEC).

PDF Cite

Kami Vaniea, Yasmeen Rashidi (2016). Tales of Software Updates: The process of updating software. In Proceedings of the SIGCHI Conference on Human Factors in Computing Systems.

PDF Cite Project

M Angela Sasse, Matthew Smith, Cormac Herley, Heather Lipford, Kami Vaniea (2016). Debunking security-usability tradeoff myths. In IEEE Security and Privacy.

PDF Cite

Yasmeen Rashidi, Kami Vaniea (2015). Poster: A User Study of WhatsApp Privacy Settings Among Arab Users. In Proceedings of the Symposium on Security and Privacy Poster Track.

PDF Cite

Katie Hoban, Emilee Rader, Rick Wash, Kami Vaniea (2014). Computer security information in stories, news articles, and education documents. In Symposium on Usable Privacy and Security.

PDF Cite

Kami Vaniea, Emilee Rader, Rick Wash (2014). Betrayed By Updates: How Negative Experiences Affect Future Security. In Proceedings of the SIGCHI Conference on Human Factors in Computing Systems.

PDF Cite Project

Rick Wash, Emilee Rader, Kami Vaniea, Michelle Rizor (2014). Out of the loop: How automated software updates cause unintended security consequences. In Symposium On Usable Privacy and Security (SOUPS).

PDF Cite Project

Kami Vaniea, Lujo Bauer, Lorrie Faith Cranor, Michael K. Reiter (2012). Out of sight, out of mind: Effects of displaying access-control information near the item it controls. In PST 2012: Conference on Privacy, Security, and Trust.

Cite

Robert W. Reeder, Lujo Bauer, Lorrie Faith Cranor, Michael K. Reiter, Kami Vaniea (2011). More than skin deep: Measuring effects of the underlying model on access-control system usability. In {CHI} 2011: Conference on Human Factors in Computing Systems.

PDF Cite

Michelle L. Mazurek, J.P. Arsenault, Joanna Breese, Nitin Gupta, Iulia Ion, Christina Johns, Daniel Lee, Yuan Liang, Jenny Olsen, Brandon Salmon, Richard Shay, Kami Vaniea, Lujo Bauer, Lorrie Faith Cranor, Gregory R. Ganger, Michael K. Reiter (2010). Access Control for Home Data Sharing: Attitudes, Needs and Practices. In CHI'10.

Cite

Michelle L. Mazurek, J.P. Arsenault, Joanna Bresee, Nitin Gupta, Christina Johns {Iulia Ion}, Daniel Lee, Yuan Liang, Jenny Olsen, Brandon Salmon, Richard Shay, Kami Vaniea, Lujo Bauer, Lorrie Faith Cranor, Gregory R. Ganger, Michael K. Reiter (2009). Access Control for Home Data Sharing: Attitudes, Needs and Practices. CMU Technical Report CMU-CyLab-09-013.

PDF Cite

Lujo Bauer, Lorrie F. Cranor, Robert W. Reeder, Michael K. Reiter, Kami Vaniea (2009). Effects of access-control policy conflict-resolution methods on policy-authoring usability.

Cite

Lujo Bauer, Lorrie F. Cranor, Robert W. Reeder, Michael K. Reiter, Kami Vaniea (2009). Effects of access-control policy conflict-resolution methods on policy-authoring usability.

Cite

Lujo Bauer, Lorrie F. Cranor, Robert .W. Reeder, Michael K. Reiter, Kami Vaniea (2009). Real life challenges in access-control management. In Proceedings of the 27th international conference on Human factors in computing systems.

Cite

Kami Vaniea, Clare-Marie Karat, Joshua B. Gross, John Karat, Carolyn Brodie (2008). Evaluating Assistance of Natural Language Policy Authoring. In SOUPS.

Cite

Kami Vaniea, Qun Ni, Lorrie F. Cranor, Elisa Bertino (2008). Access Control Policy Analysis and Visualization Tools for Security Professionals. In Workshop on Usable IT Security Management (USM ‘08).

PDF Cite

Lujo Bauer, Lorrie Faith Cranor, Robert W. Reeder, Michael K. Reiter, Kami Vaniea (2008). A user study of policy creation in a flexible access-control system. In CHI ‘08: Proceeding of the twenty-sixth annual SIGCHI conference on Human factors in computing systems.

Cite DOI

Lujo Bauer, Lorrie Faith Cranor, Robert W. Reeder, Michael K. Reiter, Kami Vaniea (2008). A user study of policy creation in a flexible access-control system. CHI ‘08: Proceeding of the twenty-sixth annual SIGCHI conference on Human factors in computing systems.

Cite DOI

Lujo Bauer, Lorrie Faith Cranor, Michael K. Reiter, Kami Vaniea (2007). Lessons learned from the deployment of a smartphone-based access-control system. In SOUPS ‘07: Proceedings of the 3rd Symposium on Usable Privacy and Security.

PDF Cite

Jason Cornwell, Ian Fette, Gary Hsieh, Madhu Prabaker, Jinghai Rao, Karen Tang, Kami Vaniea, Lujo Bauer, Lorrie Cranor, Jason Hong, Bruce McLaren, Mike Reiter, Norman Sadeh (2007). User-controllable security and privacy for pervasive computing. In Eighth IEEE Workshop on Mobile Computing Systems and Applications (HotMobile).

Cite

Lujo Bauer, Lorrie Faith Cranor, Michael K. Reiter, Kami Vaniea (2007). Lessons learned from the deployment of a smartphone-based access-control system. In SOUPS ‘07: Proceedings of the 3rd symposium on Usable privacy and security.

Cite DOI

Lujo Bauer, Lorrie Cranor, Robert W. Reeder, Michael K. Reiter, Kami Vaniea (2007). Comparing Access-Control Technologies: A Study of Keys and Smartphones.

Cite