Renaud, Karen ; Volkamer, Melanie (2015)
Exploring Mental Models Underlying PIN Management Strategies.
Konferenzveröffentlichung, Bibliographie
Kurzbeschreibung (Abstract)
PINs have been around for half a century and many insecure PIN-related practices are used. We attempted to mitigate by developing two new PIN memorial assistance mechanisms that we tested in an online study. We were not able to show an improvement in memorability, mostely because people did not use the memorial aids. We realised that a greater insight into PIN Management mental models was needed, in order to better formulate mitigation approaches. We proceeded to study PIN-related mental models, and we present our finding in this paper. The insights we gained convinced us that security researchers should not presume that people want, or need, our advice or help in any security context; they might well prefer to continue with their usual trusted practices. Yet advice should indeed still be offered, for those who do want it, and we give some suggestions about how this advice should look like in the PIN context.
| Typ des Eintrags: | Konferenzveröffentlichung |
|---|---|
| Erschienen: | 2015 |
| Autor(en): | Renaud, Karen ; Volkamer, Melanie |
| Art des Eintrags: | Bibliographie |
| Titel: | Exploring Mental Models Underlying PIN Management Strategies |
| Sprache: | Deutsch |
| Publikationsjahr: | 2015 |
| Verlag: | IEEE |
| Buchtitel: | World Congress on Internet Security (WorldCIS 2015) |
| Zugehörige Links: | |
| Kurzbeschreibung (Abstract): | PINs have been around for half a century and many insecure PIN-related practices are used. We attempted to mitigate by developing two new PIN memorial assistance mechanisms that we tested in an online study. We were not able to show an improvement in memorability, mostely because people did not use the memorial aids. We realised that a greater insight into PIN Management mental models was needed, in order to better formulate mitigation approaches. We proceeded to study PIN-related mental models, and we present our finding in this paper. The insights we gained convinced us that security researchers should not presume that people want, or need, our advice or help in any security context; they might well prefer to continue with their usual trusted practices. Yet advice should indeed still be offered, for those who do want it, and we give some suggestions about how this advice should look like in the PIN context. |
| Freie Schlagworte: | Security, Usability and Society;PINs, Mental Models, Strategies |
| ID-Nummer: | TUD-CS-2015-1264 |
| Fachbereich(e)/-gebiet(e): | LOEWE > LOEWE-Zentren > CASED – Center for Advanced Security Research Darmstadt 20 Fachbereich Informatik > SECUSO - Security, Usability and Society 20 Fachbereich Informatik > Theoretische Informatik - Kryptographie und Computeralgebra LOEWE > LOEWE-Zentren 20 Fachbereich Informatik LOEWE |
| Hinterlegungsdatum: | 30 Dez 2016 20:23 |
| Letzte Änderung: | 30 Mai 2018 12:53 |
| PPN: | |
| Zugehörige Links: | |
| Export: | |
| Suche nach Titel in: | TUfind oder in Google |
 |
Frage zum Eintrag |
Optionen (nur für Redakteure)
 |
Redaktionelle Details anzeigen |
Drucken
Impressum