In this depiction of identity assurance, there is an underlying usage dilemma surrounding PII. Therefore, in terms of identity assurance, PII exhibit some of the properties of a commons, wherein resources are accessible to all, and whereby individual actions can affect the group. Exposure thus accumulates to deplete the confidence that may be extracted for subsequent identity assurance uses. Each time we use an item of PII however, for identity assurance or otherwise, we inadvertently expose it to misuse. Each item of PII, e.g., a fingerprint, holds a confidence-based utility that fuels identity assurance, i.e., processing fingerprints towards a desired confidence that a person is whom they claim. Personally identifying information (PII) are complex resources. These unique results have practical implications for researchers and practitioners that could positively impact password security, and the financial losses suffered due to password security breaches. Additionally, colour also provided another security parameter by increasing password entropy. Through giving the user the option of choosing the colours (compared with colours being preselected), encourages users to create more personal and meaningful memory cues when creating their passwords. By adding colour to the password process, our results suggest that password memorability and security can be increased simultaneously. A longitudinal study examined in total over 3000 passwords that were created, learnt and recalled (password process) over a period of five-weeks. We introduce novel approach that utilises colour as a memory cue to increase password memorability and security. Previous researchers and practitioners have attempted to suggest ways to improve password memorability and security simultaneously. However, with password numbers increasing, many users struggle with remembering multiple passwords, which affects their security behaviour. Although there are many options to authenticate digital users, passwords remain the most common authentication mechanism. The authentication process is the first line of defence against potential impostors, and therefore is an important concern when protecting personal and organisational data. We conclude that, rather than focussing password policies on maximizing password strength and enforcing frequency alone, policies should be designed using HCI principles to help the user to set an appropriately strong password in a specific context of use. As a result, these password policies can place demands on users which impact negatively on their productivity and, ultimately, that of the organisation. We find that users are in general concerned to maintain security, but that existing security policies are too inflexible to match their capabilities, and the tasks and contexts in which they operate. The diary was followed by an interview which covered details of each password, in its context of use. 32 staff members in two organisations kept a password diary for 1 week, which produced a sample of 196 passwords. We present a study which re-examined password policies and password practice in the workplace today. HCI research published 10 years ago pointed out that many users cannot cope with the number and complexity of passwords, and resort to insecure workarounds as a consequence.
0 Comments
Leave a Reply. |