Having decided to focus attention on the “weak link”of human fallibility, a growing number of security researchersare discovering the US Government’s regulationsthat govern human subject research. This paper discussesthose regulations, their application to research onsecurity and usability, and presents strategies for negotiatingthe Institutional Review Board (IRB) approval process.It argues that a strict interpretation of regulations hasthe potential to stymie security research.
展开▼