Alexander Suchan, E. V. Zezschwitz, Katharina Krombholz
{"title":"停止解锁-提高Android解锁模式的安全性","authors":"Alexander Suchan, E. V. Zezschwitz, Katharina Krombholz","doi":"10.14722/usec.2019.23017","DOIUrl":null,"url":null,"abstract":"Android unlock patterns are among the most common authentication mechanisms on mobile devices. They are fast \nand easy to use but also lack security as user-chosen gestures \nare easy to guess and easy to observe. To improve the traditional \npattern approach, we propose Stop2Unlock, a usable but more \nsecure modification of the traditional pattern lock. Stop2Unlock \nallows users to define nodes where they stop for a limited amount \nof time before swiping to the next node. We performed a lab \nstudy (n=40) and a field study (n=14) to show that this small \nchange in user interaction can have a significant impact on \nsecurity with a minimal impact on usability. That is, user-selected \nStop2Unlock patterns are significantly harder to guess while being \ncomparable in terms of usability. Additional analysis showed that \nusers perceived the stop component as a rhythmic and memorable \ncue which supported the selection of higher entropy patterns.","PeriodicalId":215851,"journal":{"name":"Proceedings 2019 Workshop on Usable Security","volume":"38 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-02-24","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Stop to Unlock - Improving the Security of Android Unlock Patterns\",\"authors\":\"Alexander Suchan, E. V. Zezschwitz, Katharina Krombholz\",\"doi\":\"10.14722/usec.2019.23017\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Android unlock patterns are among the most common authentication mechanisms on mobile devices. They are fast \\nand easy to use but also lack security as user-chosen gestures \\nare easy to guess and easy to observe. To improve the traditional \\npattern approach, we propose Stop2Unlock, a usable but more \\nsecure modification of the traditional pattern lock. Stop2Unlock \\nallows users to define nodes where they stop for a limited amount \\nof time before swiping to the next node. We performed a lab \\nstudy (n=40) and a field study (n=14) to show that this small \\nchange in user interaction can have a significant impact on \\nsecurity with a minimal impact on usability. That is, user-selected \\nStop2Unlock patterns are significantly harder to guess while being \\ncomparable in terms of usability. Additional analysis showed that \\nusers perceived the stop component as a rhythmic and memorable \\ncue which supported the selection of higher entropy patterns.\",\"PeriodicalId\":215851,\"journal\":{\"name\":\"Proceedings 2019 Workshop on Usable Security\",\"volume\":\"38 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-02-24\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings 2019 Workshop on Usable Security\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.14722/usec.2019.23017\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings 2019 Workshop on Usable Security","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.14722/usec.2019.23017","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Stop to Unlock - Improving the Security of Android Unlock Patterns
Android unlock patterns are among the most common authentication mechanisms on mobile devices. They are fast
and easy to use but also lack security as user-chosen gestures
are easy to guess and easy to observe. To improve the traditional
pattern approach, we propose Stop2Unlock, a usable but more
secure modification of the traditional pattern lock. Stop2Unlock
allows users to define nodes where they stop for a limited amount
of time before swiping to the next node. We performed a lab
study (n=40) and a field study (n=14) to show that this small
change in user interaction can have a significant impact on
security with a minimal impact on usability. That is, user-selected
Stop2Unlock patterns are significantly harder to guess while being
comparable in terms of usability. Additional analysis showed that
users perceived the stop component as a rhythmic and memorable
cue which supported the selection of higher entropy patterns.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
