TU Darmstadt / ULB / TUbiblio

Addressing Misconceptions About Password Security Effectively [to appear]

Mayer, Peter and Volkamer, Melanie (2017):
Addressing Misconceptions About Password Security Effectively [to appear].
In: Workshop on Socio-Technical Aspects in Security and Trust, ACM, Orlando, Florida, ISBN 978-1-4503-6357-0/17/12,
DOI: 10.1145/3167996.3167998,
[Conference or Workshop Item]

Abstract

Nowadays, most users need more passwords than they can handle. Consequently, users have developed a multitude of strategies to cope with this situation. Some of these coping strategies are based on misconceptions about password security. In such cases, the users are unaware of their insecure password practices. Addressing the misconceptions is vital in order to decrease insecure coping strategies. We conducted a systematic literature review with the goal to provide an overview of the misconceptions about password security. Our literature review revealed that misconceptions exist in basically all aspects of password security. Furthermore, we developed interventions to address these misconceptions. Then, we evaluated the interventions' effectiveness in decreasing the misconceptions at three small and medium sized enterprises (SME). Our results show that the interventions decrease the overall prevalence of misconceptions significantly in the participating employees.

Item Type: Conference or Workshop Item
Erschienen: 2017
Creators: Mayer, Peter and Volkamer, Melanie
Title: Addressing Misconceptions About Password Security Effectively [to appear]
Language: English
Abstract:

Nowadays, most users need more passwords than they can handle. Consequently, users have developed a multitude of strategies to cope with this situation. Some of these coping strategies are based on misconceptions about password security. In such cases, the users are unaware of their insecure password practices. Addressing the misconceptions is vital in order to decrease insecure coping strategies. We conducted a systematic literature review with the goal to provide an overview of the misconceptions about password security. Our literature review revealed that misconceptions exist in basically all aspects of password security. Furthermore, we developed interventions to address these misconceptions. Then, we evaluated the interventions' effectiveness in decreasing the misconceptions at three small and medium sized enterprises (SME). Our results show that the interventions decrease the overall prevalence of misconceptions significantly in the participating employees.

Title of Book: Workshop on Socio-Technical Aspects in Security and Trust
Publisher: ACM
ISBN: 978-1-4503-6357-0/17/12
Uncontrolled Keywords: password security, misconceptions, literature review, user study
Divisions: 20 Department of Computer Science
20 Department of Computer Science > SECUSO - Security, Usability and Society
Event Location: Orlando, Florida
Date Deposited: 02 Dec 2017 13:07
DOI: 10.1145/3167996.3167998
Identification Number: TUD-CS-2017-0310
Export:
Suche nach Titel in: TUfind oder in Google

Optionen (nur für Redakteure)

View Item View Item