Würsching, Leon ; Putz, Florentin ; Haesler, Steffen ; Hollick, Matthias (2023)
FIDO2 the Rescue? Platform vs. Roaming Authentication on Smartphones.
ACM 2023 CHI Conference on Human Factors in Computing Systems. Hamburg, Germany (23.04.2023-28.04.2023)
doi: 10.1145/3544548.3580993
Konferenzveröffentlichung, Bibliographie
Kurzbeschreibung (Abstract)
Modern smartphones support FIDO2 passwordless authentication using either external security keys or internal biometric authentication, but it is unclear whether users appreciate and accept these new forms of web authentication for their own accounts. We present the first lab study (N=87) comparing platform and roaming authentication on smartphones, determining the practical strengths and weaknesses of FIDO2 as perceived by users in a mobile scenario. Most participants were willing to adopt passwordless authentication during our in-person user study, but closer analysis shows that participants prioritize usability, security, and availability differently depending on the account type. We identify remaining adoption barriers that prevent FIDO2 from succeeding password authentication, such as missing support for contemporary usage patterns, including account delegation and usage on multiple clients.
| Typ des Eintrags: | Konferenzveröffentlichung |
|---|---|
| Erschienen: | 2023 |
| Autor(en): | Würsching, Leon ; Putz, Florentin ; Haesler, Steffen ; Hollick, Matthias |
| Art des Eintrags: | Bibliographie |
| Titel: | FIDO2 the Rescue? Platform vs. Roaming Authentication on Smartphones |
| Sprache: | Englisch |
| Publikationsjahr: | 19 April 2023 |
| Verlag: | ACM |
| Buchtitel: | CHI '23: Proceedings of the 2023 CHI Conference on Human Factors in Computing Systems |
| Veranstaltungstitel: | ACM 2023 CHI Conference on Human Factors in Computing Systems |
| Veranstaltungsort: | Hamburg, Germany |
| Veranstaltungsdatum: | 23.04.2023-28.04.2023 |
| DOI: | 10.1145/3544548.3580993 |
| Zugehörige Links: | |
| Kurzbeschreibung (Abstract): | Modern smartphones support FIDO2 passwordless authentication using either external security keys or internal biometric authentication, but it is unclear whether users appreciate and accept these new forms of web authentication for their own accounts. We present the first lab study (N=87) comparing platform and roaming authentication on smartphones, determining the practical strengths and weaknesses of FIDO2 as perceived by users in a mobile scenario. Most participants were willing to adopt passwordless authentication during our in-person user study, but closer analysis shows that participants prioritize usability, security, and availability differently depending on the account type. We identify remaining adoption barriers that prevent FIDO2 from succeeding password authentication, such as missing support for contemporary usage patterns, including account delegation and usage on multiple clients. |
| Freie Schlagworte: | emergenCITY_KOM, emergenCITY |
| Zusätzliche Informationen: | Art.No.: 68 |
| Fachbereich(e)/-gebiet(e): | 20 Fachbereich Informatik 20 Fachbereich Informatik > Sichere Mobile Netze LOEWE LOEWE > LOEWE-Zentren LOEWE > LOEWE-Zentren > emergenCITY |
| Hinterlegungsdatum: | 30 Mär 2023 08:56 |
| Letzte Änderung: | 20 Apr 2023 10:40 |
| PPN: | |
| Export: | |
| Suche nach Titel in: | TUfind oder in Google |
 |
Frage zum Eintrag |
Optionen (nur für Redakteure)
 |
Redaktionelle Details anzeigen |
Drucken
Impressum