经理的实用工具包，以提高密码安全的组织

Q1 Business, Management and Accounting

IEEE Engineering Management Review Pub Date : 2024-07-04 DOI:10.1109/EMR.2024.3423360

Danuvasin Charoen;Warut Khern-am-nuai

{"title":"经理的实用工具包，以提高密码安全的组织","authors":"Danuvasin Charoen;Warut Khern-am-nuai","doi":"10.1109/EMR.2024.3423360","DOIUrl":null,"url":null,"abstract":"This research tackles the crucial challenge of improving password security within organizations. It proposes a practical approach to enhance both password management and user behavior. Traditional password helper systems often fall short in effectively conveying the importance of strong passwords, particularly to users with limited cybersecurity knowledge. This study addresses this gap by discussing the use of contextual warning messages which dynamically assess the strength of user-generated passwords and explain the rationale behind the assessment. By fostering a sense of shared responsibility among users, these messages aim to encourage the creation of stronger passwords. Importantly, these contextual warnings are both cost-effective and easy to implement, making them an attractive solution for organizations seeking to improve their users’ security behavior. With the proposed approach, organizations can simultaneously raise user awareness, improve understanding of password security principles, and ultimately elevate overall security practices.","PeriodicalId":35585,"journal":{"name":"IEEE Engineering Management Review","volume":"53 2","pages":"8-13"},"PeriodicalIF":0.0000,"publicationDate":"2024-07-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Manager's Practical Toolkit to Improve Password Security in Organizations\",\"authors\":\"Danuvasin Charoen;Warut Khern-am-nuai\",\"doi\":\"10.1109/EMR.2024.3423360\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"This research tackles the crucial challenge of improving password security within organizations. It proposes a practical approach to enhance both password management and user behavior. Traditional password helper systems often fall short in effectively conveying the importance of strong passwords, particularly to users with limited cybersecurity knowledge. This study addresses this gap by discussing the use of contextual warning messages which dynamically assess the strength of user-generated passwords and explain the rationale behind the assessment. By fostering a sense of shared responsibility among users, these messages aim to encourage the creation of stronger passwords. Importantly, these contextual warnings are both cost-effective and easy to implement, making them an attractive solution for organizations seeking to improve their users’ security behavior. With the proposed approach, organizations can simultaneously raise user awareness, improve understanding of password security principles, and ultimately elevate overall security practices.\",\"PeriodicalId\":35585,\"journal\":{\"name\":\"IEEE Engineering Management Review\",\"volume\":\"53 2\",\"pages\":\"8-13\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2024-07-04\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"IEEE Engineering Management Review\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://ieeexplore.ieee.org/document/10585296/\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"Business, Management and Accounting\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Engineering Management Review","FirstCategoryId":"1085","ListUrlMain":"https://ieeexplore.ieee.org/document/10585296/","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"Business, Management and Accounting","Score":null,"Total":0}

引用次数: 0

摘要

这项研究解决了提高组织内部密码安全性的关键挑战。它提出了一种实用的方法来增强密码管理和用户行为。传统的密码辅助系统往往不能有效地传达强密码的重要性，特别是对网络安全知识有限的用户。本研究通过讨论动态评估用户生成密码的强度并解释评估背后的基本原理的上下文警告消息的使用来解决这一差距。通过培养用户之间的共同责任感，这些信息旨在鼓励创建更强的密码。重要的是，这些上下文警告既具有成本效益又易于实现，使其成为寻求改善用户安全行为的组织的有吸引力的解决方案。使用建议的方法，组织可以同时提高用户意识，改进对密码安全原则的理解，并最终提升整体安全实践。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Manager's Practical Toolkit to Improve Password Security in Organizations

This research tackles the crucial challenge of improving password security within organizations. It proposes a practical approach to enhance both password management and user behavior. Traditional password helper systems often fall short in effectively conveying the importance of strong passwords, particularly to users with limited cybersecurity knowledge. This study addresses this gap by discussing the use of contextual warning messages which dynamically assess the strength of user-generated passwords and explain the rationale behind the assessment. By fostering a sense of shared responsibility among users, these messages aim to encourage the creation of stronger passwords. Importantly, these contextual warnings are both cost-effective and easy to implement, making them an attractive solution for organizations seeking to improve their users’ security behavior. With the proposed approach, organizations can simultaneously raise user awareness, improve understanding of password security principles, and ultimately elevate overall security practices.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

IEEE Engineering Management Review Business, Management and Accounting-Management of Technology and Innovation

CiteScore

7.40

自引率

0.00%

发文量

期刊介绍： Reprints articles from other publications of significant interest to members. The papers are aimed at those engaged in managing research, development, or engineering activities. Reprints make it possible for the readers to receive the best of today"s literature without having to subscribe to and read other periodicals.