Undercover: authentication usable in front of prying eyes
Undercover: authentication usable in front of prying eyes
Admin on Sun Jun 07, 2009 9:01 pm
29. Sasamoto H. Christin N. Hayashi E., 2008, Undercover: authentication usable in front of prying eyes, Florence, ACM 978-1-60558-011-1/08/04.
a. Our results show that users can authenticate within times comparable to that of graphical password schemes, with relatively low error rates,
b. Authentication poses both usability and security challenges.
c. To be viable for systems with a large, varied, user base, an authentication system has to satisfy a set of usability constraints:
i. Low error rate,
ii. Fast authentication.
iii. Rapid training.
iv. Physically safe.
d. We construct our low fidelity prototypes using reusable card--board boxes for the haptic device, and a PowerPoint display for the visual challenges. These reusable prototypes provide a realistic approximation of the user interface of the undercover prototype.
e. Our findings, summarized in Table 1. are that
i. Younger participants authenticate faster, and more accurately than older
ii. Participants authenticate faster and more accurately using the friction-based (cylinder) prototype.
f. To help us with a security analysis of the system, which we detail later, two cameras record each participant's hand and eye movement and any noise in the room, allowing us to carry out a powerful observation attack.
g. We rely on measurements of authentication times and error rates to assess the usability of our system.
h. Graph we omit for brevity shows that error rates increase with age but remain independent of information technology experience.
a. Our results show that users can authenticate within times comparable to that of graphical password schemes, with relatively low error rates,
b. Authentication poses both usability and security challenges.
c. To be viable for systems with a large, varied, user base, an authentication system has to satisfy a set of usability constraints:
i. Low error rate,
ii. Fast authentication.
iii. Rapid training.
iv. Physically safe.
d. We construct our low fidelity prototypes using reusable card--board boxes for the haptic device, and a PowerPoint display for the visual challenges. These reusable prototypes provide a realistic approximation of the user interface of the undercover prototype.
e. Our findings, summarized in Table 1. are that
i. Younger participants authenticate faster, and more accurately than older
ii. Participants authenticate faster and more accurately using the friction-based (cylinder) prototype.
f. To help us with a security analysis of the system, which we detail later, two cameras record each participant's hand and eye movement and any noise in the room, allowing us to carry out a powerful observation attack.
g. We rely on measurements of authentication times and error rates to assess the usability of our system.
h. Graph we omit for brevity shows that error rates increase with age but remain independent of information technology experience.
Admin- Admin
- Posts: 68
Join date: 2008-12-14
Age: 41
Location: Dundee UK 
Permissions of this forum:
You cannot reply to topics in this forum
» Aligning Usability and Security: A Usability Study of Polaris
» Security and usability: the case of the user authentication methods
» Evaluation of Tolimac: a secure library management system for controlling access to, and payment for
» An experimental Investigation of the Usability of Transaction Authorization in online Bank Security Systems
» Creating a Worldwide community Security structure using Individually Maintained Home Computers
» When trust defies common security sense
» The psychology of everyday things
» Comparing customer trust in virtual salespersons with customer trust in human salespersons