Understanding Shoulder Surfing in the Wild: Stories from Users and Observers
Date: May 6 2017 Publication: Proceedings of the 2017 SIGCHI Conference on Human Factors in Computing Systems (CHI '17) Publisher: ACM Source 1: https://www.medien.ifi.lmu.de/pubdb/publications/pub/eiband2017chi/eiband2017chi.pdf Source 2: http://mkhamis.com/data/papers/eiband2017chi.pdf Abstract or Summary:
Research has brought forth a variety of authentication systems to mitigate observation attacks. However, there is little work about shoulder surfing situations in the real world. We present the results of a user survey (N=174) in which we investigate actual stories about shoulder surfing on mobile devices from both users and observers. Our analysis indicates that shoulder surfing mainly occurs in an opportunistic, nonmalicious way. It usually does not have serious consequences, but evokes negative feelings for both parties, resulting in a variety of coping strategies. Observed data was personal in most cases and ranged from information about interests and hobbies to login data and intimate details about third persons and relationships. Thus, our work contributes evidence for shoulder surfing in the real world and informs implications for the design of privacy protection mechanisms. Do you have additional information to contribute regarding this research paper? If so, please email siteupdates@passwordresearch.com with the details.
<-- Back to Authentication Research Paper Index |