Abstract by Jonathan Armknecht
A Developer Usability Study of TLS Libraries
Transport Layer Security (TLS) is the most common security protocol on the Web today between a client and a server. This protocol provides the parties with confidentiality through symmetric encryption as well as authenticity through public-key cryptography. However, multiple studies identify security vulnerabilities within TLS connections due to developers misusing TLS libraries. To measure the usability of four TLS libraries, we conduct a usability study by having participants modify a client application to talk to a server using two out of the four libraries. We aim to gain insights on what makes a library usable and what problems arise.