Donate
Donate

Gaming the Future: The Book!

FOR USABLE SECURITY

Apply Now

Incoming submissions will be considered for the 2025 Norm Hardy Prize.

Administered by

Sponsored by

The Problem

Our society depends on the reliability and resilience of our infrastructure, which in turn depends on security.  Unfortunately, our current software infrastructure is not only insecure, it is insecurable. No user interface can make an insecure system secure. We understand how to build systems whose foundations are vastly more secure, but we are likely to need new interaction designs so that people can use these secure systems securely.

The Prize

The Norm Hardy Prize is a $10,000 annual award for work that helps users make wise decisions. The Prize will recognize work that:

 

  • helps users understand, preferably tacitly, the security aspects of what they do,
  • introduces workflows that make the secure way to do something the easy way,
  • develops design principles for systems that are as easy or easier to use because of their security, or
  • explores 'theory of mind’ with respect to how users interact with secure systems.

The long term goal of the Norm Hardy Prize is a set of design principles and tools that encourage developers to create interaction designs that make it easy for people to use secure systems securely.

Submissions

To be eligible for the $10k prize, please submit work which discusses at least one of these four criteria:

 

  • 1. Actual implementation of a system
  • 2. User studies of novel system
  • 3. Theory of mind of the user
  • 4. Sets of principles for user interaction design

Submissions must include a description of the work and how it contributes to the stated goals of the Prize. They may include links to working prototypes that the judges can evaluate. Wire frames for new affordances will be accepted, but working prototypes are preferred.  User studies that only evaluate existing systems are not eligible for the Prize.  Work that proposes metrics for usable security must demonstrate that it can differentiate systems based on the ability of users to make good choices.  Work on how users build mental models of the systems they use must demonstrate that these models can be translated into guidance for developers.

Winners
2024

“Protect Me Tomorrow”: Commitment Nudges to Remedy Compromised Passwords

Dr. Alisa Frik

Dr. Serge Egelman

Conor Gilsenan

Prof. Eyal Peer

Press Release

Previous Winners

2023

Covid Watch

Norm Hardy Prize Winner 2023

 

 

Press Release

 

 

About

Norm Hardy was a computer scientist most widely known for identifying the confused deputy vulnerability.  His most significant contribution was KeyKOS, a capability secure operating system that ran on commodity hardware, as well as key contributions to the creation of capability secure languages and protocols. Norm also recognized the importance of extending good security concepts out into the user’s experience, requesting that the Prize in his name encourage work in that area.

You can find Mark S. Miller’s eulogy on Norm Hardy here.

"In what kind of architecture can the deputy use each permission only for the purpose it was given, without being led to use them for other purposes?"

Norm Hardy

Honorary Mentions

Ka-Ping Yee and Marc Stiegler, whose work serves as great examples of the types of secure systems we would like to honor and incentivize.

Ka-Ping Yee

Background Reading

 

For questions about the prize, please reach out to: [email protected]

 

 

 

Facebook Twitter Youtube Linkedin Podcast Spotify
0
    0
    Your Cart
    Your cart is emptyReturn to Shop
    Continue Shopping

      Search Foresight Institute
      Powered by  GDPR Cookie Compliance
      Privacy Overview

      This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.