User experience overrides security – a title from discussions with information security business professionals on status and future of their business recently.
The title is true already today as, in the USA, some 80 % of internet users decline to open applications that require registration in some form. Registration takes time and people seem to prefer fast-to-access applications to slow-to-access applications. User experience overrides security.
Is the content of security changing? Yes, certainly so!
Yesterday it meant installing virus-protection programs to company systems, a plural expression related to companies and their systems. Tomorrow it means protecting a personal identity. In this scenario, it is not anymore protecting the company “confidential information” from outsiders, but rather protecting users personal identity from outsiders with ambition to make business with the identity. Terrifying examples already exist.
For UX designers the question is; -how do you design the security experience to fit the needs of the digital identity. Behind the identity there is a person with the same basic needs as stated in Maslow’s hierarchy of needs – security among the most critical.
For security business environment the question could be; -how do you enable your customers business in an environment, where the speed and comfort override the traditional understanding of security – environment, where user experience overrides security?
How do you think the security experience should be designed? How should my personal identity be protected?