{"title":"基于文本的移动界面验证码安全性与可用性评价","authors":"Nur Merdanoğlu, Pınar Onay Durdu","doi":"10.1002/hfm.70007","DOIUrl":null,"url":null,"abstract":"<p>Captchas are used as Human interaction proof mechanisms during the authentication process on software applications. They should provide resistance to various attacks to increase security but also be understood easily to ensure usability. Increasing the security generally reduces usability, so it is necessary to use captchas that will meet both the security and usability needs of users balanced. Within the scope of this study, a text-based captcha scheme that end-users commonly encounter during their daily interactions in mobile applications is selected and investigated to determine both a more robust and usable one for users. Six different text-based captcha types, which were distortion-based, non-distortion-based, dictionary-based, random-based, low contrast, and full contrast, were compared in terms of security and usability. Initially, security tests were applied. Afterwards, user tests were conducted with 30 participants. According to security test results, distortion, low contrast, and random-based captcha types were determined to be more robust, respectively. The most usable captcha type among the secure captcha types was determined as a random string captcha based on the user test results. Thus, it has been found that a balanced level of security and usability can be achieved when mobile application developers choose to use a random string captcha when designing interfaces. Recommendations to guide mobile interface developers were provided based on the findings obtained both from the user study and previous relevant literature.</p>","PeriodicalId":55048,"journal":{"name":"Human Factors and Ergonomics in Manufacturing & Service Industries","volume":"35 3","pages":""},"PeriodicalIF":2.2000,"publicationDate":"2025-04-17","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://onlinelibrary.wiley.com/doi/epdf/10.1002/hfm.70007","citationCount":"0","resultStr":"{\"title\":\"Security and Usability Evaluation of Text-Based Captchas on Mobile Interface\",\"authors\":\"Nur Merdanoğlu, Pınar Onay Durdu\",\"doi\":\"10.1002/hfm.70007\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"<p>Captchas are used as Human interaction proof mechanisms during the authentication process on software applications. They should provide resistance to various attacks to increase security but also be understood easily to ensure usability. Increasing the security generally reduces usability, so it is necessary to use captchas that will meet both the security and usability needs of users balanced. Within the scope of this study, a text-based captcha scheme that end-users commonly encounter during their daily interactions in mobile applications is selected and investigated to determine both a more robust and usable one for users. Six different text-based captcha types, which were distortion-based, non-distortion-based, dictionary-based, random-based, low contrast, and full contrast, were compared in terms of security and usability. Initially, security tests were applied. Afterwards, user tests were conducted with 30 participants. According to security test results, distortion, low contrast, and random-based captcha types were determined to be more robust, respectively. The most usable captcha type among the secure captcha types was determined as a random string captcha based on the user test results. Thus, it has been found that a balanced level of security and usability can be achieved when mobile application developers choose to use a random string captcha when designing interfaces. Recommendations to guide mobile interface developers were provided based on the findings obtained both from the user study and previous relevant literature.</p>\",\"PeriodicalId\":55048,\"journal\":{\"name\":\"Human Factors and Ergonomics in Manufacturing & Service Industries\",\"volume\":\"35 3\",\"pages\":\"\"},\"PeriodicalIF\":2.2000,\"publicationDate\":\"2025-04-17\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"https://onlinelibrary.wiley.com/doi/epdf/10.1002/hfm.70007\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Human Factors and Ergonomics in Manufacturing & Service Industries\",\"FirstCategoryId\":\"5\",\"ListUrlMain\":\"https://onlinelibrary.wiley.com/doi/10.1002/hfm.70007\",\"RegionNum\":3,\"RegionCategory\":\"工程技术\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q3\",\"JCRName\":\"ENGINEERING, MANUFACTURING\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Human Factors and Ergonomics in Manufacturing & Service Industries","FirstCategoryId":"5","ListUrlMain":"https://onlinelibrary.wiley.com/doi/10.1002/hfm.70007","RegionNum":3,"RegionCategory":"工程技术","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q3","JCRName":"ENGINEERING, MANUFACTURING","Score":null,"Total":0}
Security and Usability Evaluation of Text-Based Captchas on Mobile Interface
Captchas are used as Human interaction proof mechanisms during the authentication process on software applications. They should provide resistance to various attacks to increase security but also be understood easily to ensure usability. Increasing the security generally reduces usability, so it is necessary to use captchas that will meet both the security and usability needs of users balanced. Within the scope of this study, a text-based captcha scheme that end-users commonly encounter during their daily interactions in mobile applications is selected and investigated to determine both a more robust and usable one for users. Six different text-based captcha types, which were distortion-based, non-distortion-based, dictionary-based, random-based, low contrast, and full contrast, were compared in terms of security and usability. Initially, security tests were applied. Afterwards, user tests were conducted with 30 participants. According to security test results, distortion, low contrast, and random-based captcha types were determined to be more robust, respectively. The most usable captcha type among the secure captcha types was determined as a random string captcha based on the user test results. Thus, it has been found that a balanced level of security and usability can be achieved when mobile application developers choose to use a random string captcha when designing interfaces. Recommendations to guide mobile interface developers were provided based on the findings obtained both from the user study and previous relevant literature.
期刊介绍:
The purpose of Human Factors and Ergonomics in Manufacturing & Service Industries is to facilitate discovery, integration, and application of scientific knowledge about human aspects of manufacturing, and to provide a forum for worldwide dissemination of such knowledge for its application and benefit to manufacturing industries. The journal covers a broad spectrum of ergonomics and human factors issues with a focus on the design, operation and management of contemporary manufacturing systems, both in the shop floor and office environments, in the quest for manufacturing agility, i.e. enhancement and integration of human skills with hardware performance for improved market competitiveness, management of change, product and process quality, and human-system reliability. The inter- and cross-disciplinary nature of the journal allows for a wide scope of issues relevant to manufacturing system design and engineering, human resource management, social, organizational, safety, and health issues. Examples of specific subject areas of interest include: implementation of advanced manufacturing technology, human aspects of computer-aided design and engineering, work design, compensation and appraisal, selection training and education, labor-management relations, agile manufacturing and virtual companies, human factors in total quality management, prevention of work-related musculoskeletal disorders, ergonomics of workplace, equipment and tool design, ergonomics programs, guides and standards for industry, automation safety and robot systems, human skills development and knowledge enhancing technologies, reliability, and safety and worker health issues.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
