You Only Live Twice or "The Years We Wasted Caring About Shoulder-Surfing"
Date: September 2012
Publication: Proceedings of the 26th Annual BCS Interaction Specialist Group Conference on People and Computers, BCS-HCI '12
Page(s): 404 - 409
Publisher: British Computer Society Swinton
Source 1: http://althci2012.files.wordpress.com/2012/07/hci2012_submission_186.pdf
Source 2: http://ewic.bcs.org/upload/pdf/ewic_hci12_althci_paper2.pdf
Source 3: http://dl.acm.org/citation.cfm?id=2377975 - Subscription or payment required
Abstract or Summary:
Passwords are a good idea, in theory. They have the potential to act as a fairly strong gateway. In practice though, passwords are plagued with problems. They are (1) easily shared, (2) trivial to observe and (3) maddeningly elusive when forgotten. While alternatives to passwords have been proposed, none, as yet, have been adopted widely. There seems to be a reluctance to switch from tried and tested passwords to novel alternatives, even if the most glaring flaws of passwords can be mitigated. One argument is that there is not enough investigation into the feasibility of many password alternatives. Graphical authentication mechanisms are a case in point. Therefore, in this paper, we detail the design of two prototype applications that utilise graphical authentication mechanisms. However, when forced to consider the design of such prototypes, we find that pertinent password problems eg. observation of entry, are just that: password problems. We conclude that effective, alternative authentication mechanisms should target authentication scenarios rather than the well-known problems of passwords. This is the only route to wide-spread adoption of alternatives.
Do you have additional information to contribute regarding this research paper? If so, please email firstname.lastname@example.org with the details.