Sweet-Spotting Security and Usability for Intelligent Graphical Authentication Mechanisms

被引：12

作者：

Belk, Marios ^{[1
,2
]}

Pamboris, Andreas ^{[2
,3
]}

Fidas, Christos ^{[4
]}

Katsini, Christina ^{[5
]}

Avouris, Nikolaos ^{[5
]}

Samaras, George ^{[6
]}

机构：

[1] Cognit UX GmbH, Heiligkreuzsteinach, Germany

[2] Univ Cyprus, Dept Comp Sci, Nicosia, Cyprus

[3] Univ Cent Lancashire, Sch Sci, Preston, Lancs, England

[4] Univ Patras, Dept Cultural Heritage Management & New Technol, Patras, Greece

[5] Univ Patras, Dept Elect & Comp Engn, HCI Grp, Patras, Greece

[6] Univ Cyprus, Dept Comp Sci, Dipartimento Fis & Geol, Nicosia, Cyprus

来源：

2017 IEEE/WIC/ACM INTERNATIONAL CONFERENCE ON WEB INTELLIGENCE (WI 2017) | 2017年

基金：

欧盟地平线“2020”;

关键词：

Recognition-based Graphical Authentication; Security; Usability; User Study; Eye-tracking; SUPERIORITY;

D O I：

10.1145/3106426.3106488

中图分类号：

TP18 [人工智能理论];

学科分类号：

081104 ; 0812 ; 0835 ; 1405 ;

摘要：

This paper investigates the trade-off between security and usability in recognition-based graphical authentication mechanisms. Through a user study (N=103) based on a real usage scenario, it draws insights about the security strength and memorability of a chosen password with respect to the amount of images presented to users during sign-up. In particular, it reveals the users' predisposition in following predictable patterns when selecting graphical passwords, and its effect on practical security strength. It also demonstrates that a "sweetspot" exists between security and usability in graphical authentication approaches on the basis of adjusting accordingly the image grid size presented to users when creating passwords. The results of the study can be leveraged by researchers and practitioners engaged in designing intelligent graphical authentication user interfaces for striking an appropriate balance between security and usability.

引用

页码：252 / 259

页数：8

共 50 条

[21] Usability and security of the recall-based graphical password schemes
Gao, Haichang
Liu, Ning
Li, Kaisheng
Qiu, Jinhua
2013 IEEE 15TH INTERNATIONAL CONFERENCE ON HIGH PERFORMANCE COMPUTING AND COMMUNICATIONS & 2013 IEEE INTERNATIONAL CONFERENCE ON EMBEDDED AND UBIQUITOUS COMPUTING (HPCC_EUC), 2013, : 2237 - 2244
[22] Usability and Security of Gaze-Based Graphical Grid Passwords
Arianezhad, Majid
Stebila, Douglas
Mozaffari, Behzad
FINANCIAL CRYPTOGRAPHY AND DATA SECURITY: FC 2013 WORKSHOPS, 2013, 7862 : 17 - 33
[23] An Intelligent Security Model for Online Banking Authentication
Zwane, Zanele P.
Mathonsi, Topside E.
Maswikaneng, Solly P.
2021 IST-AFRICA CONFERENCE (IST-AFRICA), 2021,
[24] AUTHENTICATION AND SECURITY MECHANISMS FOR DIGITAL IMAGES
WONG, ST
HUANG, HK
GOULD, RG
RADIOLOGY, 1995, 197 : 258 - 258
[25] On the Security and Usability of Dual Credential Authentication in UK Online Banking
Just, Mike
Aspinall, David
2012 INTERNATIONAL CONFERENCE FOR INTERNET TECHNOLOGY AND SECURED TRANSACTIONS, 2012, : 259 - 264
[26] Security and Usability in Knowledge-based User Authentication: A Review
Katsini, Christina
Belk, Marios
Fidas, Christos
Avouris, Nikolaos
Samaras, George
20TH PAN-HELLENIC CONFERENCE ON INFORMATICS (PCI 2016), 2016,
[27] Security And Usability of User Authentication for Fintech Data Protection in Indonesia
Manggala, Muhammad Purwa
Wahidah, Ida
Hanuranto, Ahmad Tri
2022 INTERNATIONAL CONFERENCE ON DECISION AID SCIENCES AND APPLICATIONS (DASA), 2022, : 546 - 550
[28] User perceptions of security, convenience and usability for ebanking authentication tokens
Weir, Catherine S.
Douglas, Gary
Carruthers, Martin
Jack, Mervyn
COMPUTERS & SECURITY, 2009, 28 (1-2) : 47 - 62
[29] Balancing Security and Usability of Local Security Mechanisms for Mobile Devices
Yang, Shuzhe
Bal, Goekhan
INFORMATION SECURITY AND PRIVACY RESEARCH, 2012, 376 : 327 - 338
[30] The Impact of Image Choices on the Usability and Security of Click Based Graphical Passwords
Suo, Xiaoyuan
Zhu, Ying
Owen, G. Scott
ADVANCES IN VISUAL COMPUTING, PT 2, PROCEEDINGS, 2009, 5876 : 889 - +

← 1 2 3 4 5 →