Abstract
In this paper, we describe the study we carried out to replicate and extend the field observation study of real world ATM use carried out by De Luca et al., published at the SOUPS conference in 2010. Replicating De Luca et al.'s study, we observed PIN shielding rates at ATMs in Germany. We then extended their research by conducting a similar field observation study in Sweden and the United Kingdom. Moreover, in addition to observing ATM users (withdrawing), we also observed electronic payment scenarios requiring PIN entry. Altogether, we gathered data related to 930 observations. Similar to De Luca et al., we conducted follow-up interviews, the better to interpret our findings. We were able to confirm De Luca et al.'s findings with respect to low PIN shielding incidence during ATM cash withdrawals, with no significant differences between shielding rates across the three countries. PIN shielding incidence during electronic payment scenarios was significantly lower than incidence during ATM withdrawal scenarios in both the United Kingdom and Sweden. Shielding levels in Germany were similar during both withdrawal and payment scenarios. We conclude the paper by suggesting a number of explanations for the differences in shielding that our study revealed.
Original language | English |
---|---|
Pages | 1-11 |
Number of pages | 11 |
Publication status | Published - 31 Aug 2018 |
Event | 14th Symposium on Usable Privacy and Security 2108 - Baltimore, United States Duration: 12 Aug 2018 → 14 Aug 2018 |
Conference
Conference | 14th Symposium on Usable Privacy and Security 2108 |
---|---|
Country/Territory | United States |
City | Baltimore |
Period | 12/08/18 → 14/08/18 |
Keywords
- field observation study
- ATM security
- PIN shielding