<\/h4>\nOld vs. New Designs<\/h4>\n
<\/p>\n
![\"Gray](\"https:\/\/blog.mozilla.org\/ux\/files\/2019\/03\/Screen-Shot-2019-03-10-at-5.25.21-PM-600x407.png\")
Example of an old Firefox security certificate message<\/p><\/div>\n
\u00a0<\/strong><\/p>\n Example of a new Firefox security message<\/p><\/div>\n <\/p>\n <\/p>\n <\/p>\n <\/p>\n We met our goals, as illustrated by three different studies:<\/p>\n 1. A qualitative usability study<\/strong> (remote, unmoderated on usertesting.com) of a first draft of redesigned and re-written error pages. The study evaluated the comprehensibility, utility, and tone of the new pages. Our internal user researcher, Francis Djabri<\/a>, tested those messages with eight participants and we made adjustments based on the results.<\/p>\n 2. A quantitative survey<\/strong> comparing Firefox\u2019s new error pages, Firefox\u2019s current error pages, and Chrome\u2019s current comparative pages. This was a paid panel study that asked users about the source of message, how they felt about the message, and what actions they would take as a result of the message. Here\u2019s a snapshot of the results:<\/p>\n When presented with the redesigned error message, we saw a \u00a022 – 50% decrease<\/strong> in users stating they would attempt to ignore the warning message.<\/p>\n When presented with the redesigned error message, we saw a 29 – 60% decrease<\/strong> in users stating they would attempt to access the website via another browser.\u00a0 (Only 4.7 – 8.5 %<\/strong> of users who saw the new Firefox message said they would try another browser, in contrast to 10 – 11.3%<\/strong> of users who saw a Chrome message).<\/p>\n (Source: Firefox Strategy & Insights, Tyler Downer, November 2018 Survey Highlights)<\/i><\/p><\/blockquote>\n <\/p>\n 3. A live study<\/strong> comparing the new and old security messages with Firefox users confirmed that the new messages did not significantly impact usage or retention in a negative way. This gave us the green light to go-live with the redesigned pages for all users.<\/p>\n <\/p>\n <\/p>\n The process of creating new security messages<\/p><\/div>\n In this blog post, I identify the eight design and content tips\u2014based on outside research and our own\u2014 for creating more successful security warning messages.<\/p>\n <\/p>\n <\/p>\n <\/p>\n Unless your particular users are more technical, it\u2019s generally good practice to avoid technical terms\u2014they aren\u2019t helpful or accessible for the general population. Words like \u201csecurity credentials,\u201d \u201cencrypted,\u201d and even \u201ccertificate\u201d are too abstract and thus ineffective in achieving user understanding.(2)<\/p>\n It\u2019s hard to avoid some of these terms entirely, but when you do <\/i>use them, explain what they mean. In our new messages, we don\u2019t use the technical term, \u201csecurity certificates,\u201d but we do use the term \u201ccertificates.\u201d On first usage, however, we explain what \u201ccertificate\u201d means in plain language:<\/p>\n Some seemingly common terms can also be problematic. Our own user study showed that the term, \u201cconnection,\u201d confused people. They thought, mistakenly, that the cause of the issue was a bad internet connection, rather than a bad certificate.(3) So, we avoid the term in our final heading copy:<\/p>\n <\/p>\n <\/p>\n When confronted with decisions online, we all tend to be \u201ccognitive misers.\u201d To minimize mental effort, we make \u201cquick decisions based on learned rules and heuristics.\u201d This efficiency-driven decision making isn\u2019t foolproof, but it gets the job done. It means, however, that we cut corners when consuming content and considering outcomes.(4)<\/p>\n Knowing this, we kept our messages short and scannable.<\/p>\n We also streamlined the decision-making process with opinionated design and progressive disclosure (read on below).<\/p>\n <\/p>\n <\/p>\n \u201cSafety is an abstract concept. When evaluating alternatives in making a decision, outcomes that are abstract in nature tend to be less persuasive than outcomes that are concrete.\u201d <\/i>\u2014 Ryan West, \u201cThe Psychology of Security<\/a>\u201d<\/p><\/blockquote>\n <\/p>\n When users encounter a security warning, they can’t immediately access content or complete a task. Between the two options\u2014proceed and access the desired content, or retreat to avoid some potential and ambiguous threat\u2014the former provides a more immediate and tangible award. And people like rewards.(5)<\/p>\n Knowing that safety may be the less appealing option, we employed opinionated design. We encourage users to make the safer choice by giving it a design advantage as the \u201cclear default choice.\u201d(6) At the same time, we have to be careful that we aren\u2019t being a big brother browser. If users want to proceed, and take the risk, that\u2019s their choice (and in some cases, the informed user can do so knowing they are actually safe from the particular certificate error at hand). It might be tempting to add ten click-throughs and obscure the unsafe choice, but we don\u2019t want to frustrate people in the process. And, the efficacy of additional hurdles depends on how difficult those hurdles are.(7)<\/p>\n Striving for balance, we:<\/p>\n <\/p>\n <\/p>\n In addition to \u201csafety\u201d being an abstract concept, users tend to believe that they won\u2019t be the ones to fall prey to the potential threat (i.e., those kind of things happen to other people…they won\u2019t happen to me<\/i>).(8) And, save for our more tech-savvy users, the general population might not care what particular certificate error is taking place and its associated details.<\/p>\n So, we needed to make the risk as concrete as possible, and communicate it in more personal terms. We did the following:<\/p>\n <\/p>\n <\/p>\n While the general population might not need or want to know the technical details, you should provide them for the users that do…in the right place.<\/p>\n Users rarely click on links like \u201cLearn more\u201d and \u201cMore Information.\u201d(9) Our own usability study confirmed this, as half of the participants did not notice or feel compelled to select the \u201cAdvanced\u201d button.(10) So, we privileged content that is more broadly accessible and immediately important on our first screen, but provided more detail and technical information on the second half of the screen, or behind the \u201cAdvanced\u201d button. Knowing users aren\u2019t likely to click on \u201cAdvanced,\u201d we moved any information that was more important, such as content about what action the user could take, to the first screen.<\/p>\n The \u201cAdvanced\u201d section thus serves as a form of progressive disclosure. We avoided cluttering up our main screen with technical detail, while preserving a less obtrusive place for that information for the users who want it.<\/p>\n <\/p>\n <\/p>\n In the case of security errors, we don\u2019t know for sure <\/i>if the issue at hand is the result of an attack, or simply a misconfigured site. Hackers could be hijacking the site to steal credit card information…or a site may just not have its security certificate credentials in order, for example.<\/p>\n When there is <\/i>chance of attack, communicate the potential risk, but be transparent about the uncertainty. Our messages employ language like \u201cpotential\u201d and \u201cattackers could<\/i>,\u201d and we acknowledge when there are two potential causes for the error (the former unsafe, the latter safe):<\/p>\n The website is either misconfigured or your computer clock is set to the wrong time.<\/em><\/p><\/blockquote>\n <\/p>\n Explain why<\/i> you don\u2019t trust a site, and offer the ability to learn more in a support article:<\/p>\n Websites prove their identity via certificates. Firefox does not trust example.com because its certificate issuer is unknown, the certificate is self-signed, or the server is not sending the correct intermediate certificates. <\/em>Learn more about this error<\/em> <\/a><\/p><\/blockquote>\n <\/p>\n A participant in our usability study shared his appreciation for this kind of transparency:<\/p>\n \u201cI’m not frustrated, I’m enlightened. Often software tries to summarize things; they think the user doesn’t need to know, and they’ll just say something a bit vague. As a user, I would prefer it to say ‘this is what we think and this is how we determined it.’ ” <\/p>\n <\/p>\n Illustration, iconography, and color treatment are important communication tools to accompany the copy. Visual cues can be even \u201clouder\u201d than words and so it\u2019s critical to choose these carefully.<\/p>\n We wanted users to understand the risk at hand but we didn\u2019t want to overstate the risk so that browsing feels like a dangerous act. We also wanted users to know and feel that Firefox was protecting them from potential threats.<\/p>\n Some warning messages employ more dramatic imagery like masked eyes, a robber, or police officer, but their efficacy is disputed.(11) Regardless, that sort of explicit imagery may best be reserved for instances in which we know<\/i> the danger to be imminent, which was not our case.<\/p>\n The imagery must also be on brand and consistent with your design system. At Firefox, we don\u2019t use human illustration within the product\u2014we use whimsical critters. Critters would not be an appropriate choice for error messages communicating a threat. So, we decided to use iconography that telegraphs risk or danger.<\/p>\n We also selected color scaled according to threat level. At Firefox, yellow is a warning and red signifies an error or threat. We used a larger yellow icon for our messages as there is a potential risk but the risk is not guaranteed. We also added a yellow border as an additional deterrent for messages in which the user had the option to proceed to the unsafe site (this isn\u2019t always the case).<\/p>\n Example of a yellow border around one of the new error messages.<\/p><\/div>\n <\/p>\n <\/p>\n Any good UX copy uses language that sounds and feels human, and that\u2019s an explicit guiding principle in Firefox\u2019s own Voice and Tone guidelines<\/a>. By \u201chuman,\u201d I mean language that\u2019s natural and accessible.<\/p>\n If the context is right, you can go a bit farther and have some fun. One of our five error messages did not <\/i>actually involve risk to the user\u2014the user simply needed to adjust her clock. In this case, Communication Design Lead, Sean Martell<\/a>, thought it appropriate to create an \u201cOld Timey Berror\u201d illustration. People in our study responded well\u2026 we even got a giggle:<\/p>\n New clock-related error message<\/p><\/div>\n <\/p>\n The field of security messaging is challenging on many levels, but there are things we can do as designers and content strategists to help users navigate this minefield. Given the amount of frustration error messages can cause a user, and the risk these obstructions pose to business outcomes like retention, it\u2019s worth the time and consideration to get these oft-neglected messages right…or, at least, better.<\/p>\n Special thanks to my colleagues: Bram Pitoyo for designing the messages and being an excellent thought partner throughout, Johann Hofmann and Dana Keeler for their patience and security expertise, and Romain Testard and Tony Cinotto for their mad PM skills. Thank you to Sharon Bautista, Betsy Mikel, and Michelle Heubusch for reviewing an earlier draft of this post.<\/i><\/p>\n <\/p>\n","protected":false},"excerpt":{"rendered":" Security messages are very hard to get right, but it\u2019s very important that you do. The world of internet security is increasingly complex and scary for the layperson. While in-house … Read more<\/a><\/p>\n","protected":false},"author":1624,"featured_media":4128,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[246,27262,9594,9600],"tags":[52921,422,440411,30,5,69,440634,24666,625,52922],"coauthors":[52917],"_links":{"self":[{"href":"https:\/\/blog.mozilla.org\/ux\/wp-json\/wp\/v2\/posts\/4091"}],"collection":[{"href":"https:\/\/blog.mozilla.org\/ux\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.mozilla.org\/ux\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.mozilla.org\/ux\/wp-json\/wp\/v2\/users\/1624"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.mozilla.org\/ux\/wp-json\/wp\/v2\/comments?post=4091"}],"version-history":[{"count":0,"href":"https:\/\/blog.mozilla.org\/ux\/wp-json\/wp\/v2\/posts\/4091\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blog.mozilla.org\/ux\/wp-json\/wp\/v2\/media\/4128"}],"wp:attachment":[{"href":"https:\/\/blog.mozilla.org\/ux\/wp-json\/wp\/v2\/media?parent=4091"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.mozilla.org\/ux\/wp-json\/wp\/v2\/categories?post=4091"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.mozilla.org\/ux\/wp-json\/wp\/v2\/tags?post=4091"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/blog.mozilla.org\/ux\/wp-json\/wp\/v2\/coauthors?post=4091"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}![\"Gray](\"https:\/\/blog.mozilla.org\/ux\/files\/2019\/03\/Screen-Shot-2019-03-10-at-5.23.01-PM-600x489.png\")
Goals<\/h2>\n
Business goals:<\/h3>\n
\n
User experience goals:<\/h3>\n
\n
Results<\/h2>\n
How we did it:<\/h2>\n
![\"Eight](\"https:\/\/blog.mozilla.org\/ux\/files\/2019\/03\/Screen-Shot-2019-03-10-at-5.02.33-PM.png\")
Content & Design Tips<\/h2>\n
1. Avoid technical jargon, and choose your words carefully<\/h3>\n
![\"\"](\"https:\/\/blog.mozilla.org\/ux\/files\/2019\/03\/Websites-prove-600x36.png\")
<\/p>\n![\"The](\"https:\/\/blog.mozilla.org\/ux\/files\/2019\/03\/5-before-after-heading@2x-600x115.png\")
<\/h3>\n2. Keep copy concise and scannable…because people are \u201ccognitive misers\u201d<\/h3>\n
\n
![\"The](\"https:\/\/blog.mozilla.org\/ux\/files\/2019\/03\/6-heading-and-first-line@2x-600x115.png\")
<\/p>\n3. Employ opinionated design, to an appropriate degree<\/h3>\n
\n
![\"Two](\"https:\/\/blog.mozilla.org\/ux\/files\/2019\/03\/Screen-Shot-2019-03-10-at-5.18.50-PM-600x107.png\")
<\/p>\n4. Communicate the risk, and make it tangible<\/h3>\n
\n
![\"The](\"https:\/\/blog.mozilla.org\/ux\/files\/2019\/03\/7-heading-and-second-line@2x-600x115.png\")
<\/p>\n5. Practice progressive disclosure<\/h3>\n
![\"A](\"https:\/\/blog.mozilla.org\/ux\/files\/2019\/03\/8-advanced-section@2x.png\")
<\/p>\n6. Be transparent (no one likes the internet browser who cried wolf)<\/h3>\n
\n\u2014 Participant from a usability study on redesigned error messages (User Research Firefox UX, Francis Djabri<\/a>, 2018) <\/i><\/p><\/blockquote>\n7. Choose imagery and color carefully<\/h3>\n
![\"An](\"https:\/\/blog.mozilla.org\/ux\/files\/2019\/03\/9-yellow-border@2x-600x500.png\")
8. Make it human<\/h3>\n
![\"Example](\"https:\/\/blog.mozilla.org\/ux\/files\/2019\/03\/New-Old-Timey.png\")
Conclusion<\/h2>\n
Thank you<\/h3>\n
References<\/h3>\n
\n
Footnotes<\/h3>\n
\n