On the Usefulness of User Nudging and Strength Indication Concerning Unlock Pattern Security

2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom) Pub Date : 2020-12-01 DOI:10.1109/TrustCom50675.2020.00227

Thomas Hupperich, Katharina Dassel

{"title":"On the Usefulness of User Nudging and Strength Indication Concerning Unlock Pattern Security","authors":"Thomas Hupperich, Katharina Dassel","doi":"10.1109/TrustCom50675.2020.00227","DOIUrl":null,"url":null,"abstract":"Strong passwords rely on complexity and length, no matter if text-based or of any other type. For text-based passwords, there are many established methods to measure complexity while for graphical passwords, e.g., unlock patterns on mobile devices, it is still an open question what criteria can be used to describe complexity. Also, users tend to choose a stronger password if the strength of their password is visualized. We conduct a user study on the helpfulness of strength indication and user nudging regarding unlock patterns. Participants create such graphical passwords under carefully specified circumstances, e.g., practical nudges on how to improve their password's security. We show that the choice of a strong password does not rely on being tech-savvy and users with different technical backgrounds can be helped by visualizations of a graphical password strength as well as by hints on how to improve it. Most users even perceive this as a helpful feature.","PeriodicalId":221956,"journal":{"name":"2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)","volume":"142 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/TrustCom50675.2020.00227","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Strong passwords rely on complexity and length, no matter if text-based or of any other type. For text-based passwords, there are many established methods to measure complexity while for graphical passwords, e.g., unlock patterns on mobile devices, it is still an open question what criteria can be used to describe complexity. Also, users tend to choose a stronger password if the strength of their password is visualized. We conduct a user study on the helpfulness of strength indication and user nudging regarding unlock patterns. Participants create such graphical passwords under carefully specified circumstances, e.g., practical nudges on how to improve their password's security. We show that the choice of a strong password does not rely on being tech-savvy and users with different technical backgrounds can be helped by visualizations of a graphical password strength as well as by hints on how to improve it. Most users even perceive this as a helpful feature.

查看原文本刊更多论文

论用户提示和强度指示对解锁模式安全的作用

强密码依赖于复杂度和长度，无论是基于文本的还是其他类型的。对于基于文本的密码，有许多既定的方法来衡量复杂性，而对于图形密码，例如移动设备上的解锁模式，可以使用什么标准来描述复杂性仍然是一个悬而未决的问题。此外，如果密码的强度是可视化的，用户倾向于选择更强的密码。我们对解锁模式的力量指示和用户轻推的帮助进行了用户研究。参与者在精心指定的情况下创建这种图形密码，例如，在如何提高密码安全性的实际提示下。我们表明，选择强密码并不依赖于精通技术，具有不同技术背景的用户可以通过图形化密码强度的可视化以及如何改进它的提示来帮助。大多数用户甚至认为这是一个有用的功能。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)

自引率

0.00%

发文量