不需要密码:父子身份验证机制的迭代设计

Proceedings of the 19th International Conference on Human-Computer Interaction with Mobile Devices and Services Pub Date : 2017-09-04 DOI:10.1145/3098279.3098550

Kalpana Hundlani, S. Chiasson, Larry Hamid

{"title":"不需要密码:父子身份验证机制的迭代设计","authors":"Kalpana Hundlani, S. Chiasson, Larry Hamid","doi":"10.1145/3098279.3098550","DOIUrl":null,"url":null,"abstract":"Even though the vast majority of children are online, our exploration of the user authentication literature and available tools revealed few alternatives specifically for authenticating children. We create an authentication mechanism that reduces the password burden for children and adds customizable parental oversight to increase security. With Bluink, our industry partner, we iteratively designed and user tested three parent-child prototypes, with each iteration addressing issues raised in the previous iteration. Our final design is a parent-child authentication mechanism based on OpenID and FIDO U2F which allows children to log in to websites without requiring a password and enables parents using their mobile device to remotely determine whether a login request should be granted.","PeriodicalId":120153,"journal":{"name":"Proceedings of the 19th International Conference on Human-Computer Interaction with Mobile Devices and Services","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2017-09-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"8","resultStr":"{\"title\":\"No passwords needed: the iterative design of a parent-child authentication mechanism\",\"authors\":\"Kalpana Hundlani, S. Chiasson, Larry Hamid\",\"doi\":\"10.1145/3098279.3098550\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Even though the vast majority of children are online, our exploration of the user authentication literature and available tools revealed few alternatives specifically for authenticating children. We create an authentication mechanism that reduces the password burden for children and adds customizable parental oversight to increase security. With Bluink, our industry partner, we iteratively designed and user tested three parent-child prototypes, with each iteration addressing issues raised in the previous iteration. Our final design is a parent-child authentication mechanism based on OpenID and FIDO U2F which allows children to log in to websites without requiring a password and enables parents using their mobile device to remotely determine whether a login request should be granted.\",\"PeriodicalId\":120153,\"journal\":{\"name\":\"Proceedings of the 19th International Conference on Human-Computer Interaction with Mobile Devices and Services\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2017-09-04\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"8\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of the 19th International Conference on Human-Computer Interaction with Mobile Devices and Services\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/3098279.3098550\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 19th International Conference on Human-Computer Interaction with Mobile Devices and Services","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3098279.3098550","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 8

摘要

尽管绝大多数儿童都在线，但我们对用户身份验证文献和可用工具的探索显示，很少有专门用于对儿童进行身份验证的替代方案。我们创建了一种身份验证机制，减少了儿童的密码负担，并增加了可定制的家长监督，以提高安全性。与我们的行业合作伙伴Bluink一起，我们迭代地设计和用户测试了三个亲子原型，每个迭代都解决了前一个迭代中提出的问题。我们的最终设计是一个基于OpenID和FIDO U2F的亲子认证机制，它允许孩子登录网站而不需要密码，并使父母使用他们的移动设备远程确定是否应该授予登录请求。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

No passwords needed: the iterative design of a parent-child authentication mechanism

Even though the vast majority of children are online, our exploration of the user authentication literature and available tools revealed few alternatives specifically for authenticating children. We create an authentication mechanism that reduces the password burden for children and adds customizable parental oversight to increase security. With Bluink, our industry partner, we iteratively designed and user tested three parent-child prototypes, with each iteration addressing issues raised in the previous iteration. Our final design is a parent-child authentication mechanism based on OpenID and FIDO U2F which allows children to log in to websites without requiring a password and enables parents using their mobile device to remotely determine whether a login request should be granted.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Proceedings of the 19th International Conference on Human-Computer Interaction with Mobile Devices and Services

自引率

0.00%

发文量