251. Sweet-spotting security and usability for intelligent graphical authentication mechanisms
- Author
-
Christina Katsini, Marios Belk, Nikolaos Avouris, Christos Fidas, Andreas Pamboris, and George Samaras
- Subjects
Password policy ,business.industry ,Computer science ,05 social sciences ,Usability inspection ,020207 software engineering ,Usability ,02 engineering and technology ,Usability lab ,World Wide Web ,Usability engineering ,0202 electrical engineering, electronic engineering, information engineering ,Human-computer interaction in information security ,0501 psychology and cognitive sciences ,User interface ,business ,Web usability ,050107 human factors - Abstract
This paper investigates the trade-off between security and usability in recognition-based graphical authentication mechanisms. Through a user study (N=103) based on a real usage scenario, it draws insights about the security strength and memorability of a chosen password with respect to the amount of images presented to users during sign-up. In particular, it reveals the users' predisposition in following predictable patterns when selecting graphical passwords, and its effect on practical security strength. It also demonstrates that a "sweet-spot" exists between security and usability in graphical authentication approaches on the basis of adjusting accordingly the image grid size presented to users when creating passwords. The results of the study can be leveraged by researchers and practitioners engaged in designing intelligent graphical authentication user interfaces for striking an appropriate balance between security and usability.
- Published
- 2017
- Full Text
- View/download PDF