Table 2.

Six security features implemented in the SecSim app, their options, and the selections made by 66 study participants before and after the security education.

Feature label		Feature description	Before, n (%)	After, n (%)
Encryption
	1	Encrypting data on local device (PLa=1)	28 (42)	18 (27)
	2	Encrypting data when transmission (PL=1)	6 (9)	5 (8)
	3	Encrypting data on the remote server (PL=1)	13 (20)	7 (11)
	1,2	Encrypting data on local device and during transmission (PL=2)	0 (0)	2 (3)
	1,3	Encrypting data on local device and remote server (PL=2)	1 (2)	0 (0)
	2,3	Encrypting data during transmission and on remote server (PL=2)	3 (5)	5 (8)
	1,2,3	Encrypting data on local, remote device and during transmission (PL=3)	14 (21)	29 (44)
		No answer	1 (2)	0 (0)
Password update frequency
	1	Once a month	11 (17)	—b
	2	Once every 3 months	15 (23)	—
	3	Once every 6 months	19 (29)	—
	4	Once a year	6 (9)	—
	5	Never	13 (20)	—
		No answer	2 (3)	—
Data storage and backup location
	1	On local device only	34 (52)	—
	2	On remote server only	5 (8)	—
	3	Both on local device and remote server	25 (38)	—
		No answer	2 (3)	—
Log-in credential
	1	Username, password, and PIN are required	5 (8)	10 (15)
	2	Username and password are required	24 (36)	18 (27)
	3	Only PIN is required	16 (24)	16 (24)
	4	Nothing is required, all saved on the local device	20 (30)	21 (32)
		No answer	1 (2)	1 (2)
RBACc
	1	Not using RBAC	31 (47)	13 (20)
	2	Using RBAC	33 (50)	53 (80)
		No answer	2 (3)	0 (0)
Image encryption
	1	Not using image encryption	20 (30)	8 (12)
	2	Using image encryption	44 (67)	58 (88)
		No answer	2 (3)	0 (0)

^aPL: protection level.

^bNot applicable.

^cRBAC: role-based access control.