Exploring user perceptions of authentication scheme security

A. Nosseir; Sortirios Terzis

Exploring user perceptions of authentication scheme security

Research output: Contribution to conference › Poster › peer-review

51 Downloads (Pure)

Abstract

Despite researchers' efforts authentication remains a challenge, as demonstrated by the prevalent use of passwords in spite of their usability and security problems. Although alternatives have been suggested addressing these problems, they have failed to gain wide acceptance. It is now recognized that a more comprehensive investigation of authentication schemes is necessary to address the challenge. Research has shown that end-user perceptions and attitudes play a major role in the acceptance of new technologies. However, they have received limited attention in the context of authentication. Studies suggest that authentication schemes are distinct enough to require consideration of a different set of factors, like the perception of their security. They have also shown that the relationship between perceived security and acceptance is not linear, i.e. up to a certain level of security increases the acceptability of a scheme, but beyond that higher levels of security undermine it. As a higher level of security typically requires increased user effort, it would seem that a scheme that is
perceived too easy to use may not be acceptable by users. From the above, it is clear that studying the perception of their security is an important aspect of a comprehensive investigation of authentication schemes. In this context, we
conducted a first study of how users perceive the security of five authentication schemes.

Original language	English
Number of pages	2
Publication status	Published - 24 Jul 2013
Event	Symposium on Usable Privacy and Security - Northumbria University, Newcastle, United Kingdom Duration: 24 Jul 2013 → 26 Jul 2013

Conference

Conference	Symposium on Usable Privacy and Security
Country	United Kingdom
City	Newcastle
Period	24/07/13 → 26/07/13

Keywords

usable authentication
authentication scheme security
technology acceptance
network security

Access to Document

Nosseir-Terzis-SOUPS2013-user-perceptions-of-authentication-scheme-securityAccepted author manuscript, 157 KB

Fingerprint Dive into the research topics of 'Exploring user perceptions of authentication scheme security'. Together they form a unique fingerprint.

Cite this

@conference{77e4d9f0987543fdb5c2745ba5f203cb,

title = "Exploring user perceptions of authentication scheme security",

abstract = "Despite researchers' efforts authentication remains a challenge, as demonstrated by the prevalent use of passwords in spite of their usability and security problems. Although alternatives have been suggested addressing these problems, they have failed to gain wide acceptance. It is now recognized that a more comprehensive investigation of authentication schemes is necessary to address the challenge. Research has shown that end-user perceptions and attitudes play a major role in the acceptance of new technologies. However, they have received limited attention in the context of authentication. Studies suggest that authentication schemes are distinct enough to require consideration of a different set of factors, like the perception of their security. They have also shown that the relationship between perceived security and acceptance is not linear, i.e. up to a certain level of security increases the acceptability of a scheme, but beyond that higher levels of security undermine it. As a higher level of security typically requires increased user effort, it would seem that a scheme that isperceived too easy to use may not be acceptable by users. From the above, it is clear that studying the perception of their security is an important aspect of a comprehensive investigation of authentication schemes. In this context, weconducted a first study of how users perceive the security of five authentication schemes.",

keywords = "usable authentication, authentication scheme security, technology acceptance, network security",

author = "A. Nosseir and Sortirios Terzis",

year = "2013",

month = jul,

day = "24",

language = "English",

note = "Symposium on Usable Privacy and Security ; Conference date: 24-07-2013 Through 26-07-2013",

}

TY - CONF

T1 - Exploring user perceptions of authentication scheme security

AU - Nosseir, A.

AU - Terzis, Sortirios

PY - 2013/7/24

Y1 - 2013/7/24

N2 - Despite researchers' efforts authentication remains a challenge, as demonstrated by the prevalent use of passwords in spite of their usability and security problems. Although alternatives have been suggested addressing these problems, they have failed to gain wide acceptance. It is now recognized that a more comprehensive investigation of authentication schemes is necessary to address the challenge. Research has shown that end-user perceptions and attitudes play a major role in the acceptance of new technologies. However, they have received limited attention in the context of authentication. Studies suggest that authentication schemes are distinct enough to require consideration of a different set of factors, like the perception of their security. They have also shown that the relationship between perceived security and acceptance is not linear, i.e. up to a certain level of security increases the acceptability of a scheme, but beyond that higher levels of security undermine it. As a higher level of security typically requires increased user effort, it would seem that a scheme that isperceived too easy to use may not be acceptable by users. From the above, it is clear that studying the perception of their security is an important aspect of a comprehensive investigation of authentication schemes. In this context, weconducted a first study of how users perceive the security of five authentication schemes.

AB - Despite researchers' efforts authentication remains a challenge, as demonstrated by the prevalent use of passwords in spite of their usability and security problems. Although alternatives have been suggested addressing these problems, they have failed to gain wide acceptance. It is now recognized that a more comprehensive investigation of authentication schemes is necessary to address the challenge. Research has shown that end-user perceptions and attitudes play a major role in the acceptance of new technologies. However, they have received limited attention in the context of authentication. Studies suggest that authentication schemes are distinct enough to require consideration of a different set of factors, like the perception of their security. They have also shown that the relationship between perceived security and acceptance is not linear, i.e. up to a certain level of security increases the acceptability of a scheme, but beyond that higher levels of security undermine it. As a higher level of security typically requires increased user effort, it would seem that a scheme that isperceived too easy to use may not be acceptable by users. From the above, it is clear that studying the perception of their security is an important aspect of a comprehensive investigation of authentication schemes. In this context, weconducted a first study of how users perceive the security of five authentication schemes.

KW - usable authentication

KW - authentication scheme security

KW - technology acceptance

KW - network security

UR - http://cups.cs.cmu.edu/soups/2013/posters/soups13_posters-final26.pdf

UR - http://cups.cs.cmu.edu/soups/2013/

M3 - Poster

T2 - Symposium on Usable Privacy and Security

Y2 - 24 July 2013 through 26 July 2013

ER -