Skip to Main Content Area

Not a member?

Click here to register!
Forgot username or password?

Modeling Aggregate Security with User Agents that Employ Password Memorization Techniques

Submitted by thurlwel on Tue, 07/18/2017 - 5:44pm

Title	Modeling Aggregate Security with User Agents that Employ Password Memorization Techniques
Publication Type	Conference Paper
Year of Publication	2017
Authors	Christopher Novak, Dartmouth College, Jim Blythe, University of Southern Califonia, Ross Koppel, University of Southern California, Vijay Kothari, Dartmouth College, Sean Smith, Dartmouth College
Conference Name	Symposium On Usable Privacy and Security (SOUPS 2017)
Conference Location	Santa Clara, CA
Keywords	Science of Human Circumvention of Security, science of security
Abstract	We discuss our ongoing work with an agent-based password simulation which models how site-enforced password requirements a ect aggregate security when people interact with multiple authentication systems. We model two password memorization techniques: passphrase generation and spaced repetition. Our simulation suggests system-generated passphrases lead to lower aggregate security across services that enforce even moderate password requirements. Furthermore, allowing users to expand their password length over time via spaced repetition increases aggregate security.
Citation Key	node-36588

Other available formats:

Modeling Aggregate Security with User Agents thatEmploy Password Memorization Techniques

Attachment	Taxonomy	Kind	Size
Modeling Aggregate Security with User Agents thatEmploy Password Memorization Techniques	Science of Security Science of Human Circumvention of Security Science of Security Academia Understanding and Accounting for Human Behavior Science of Human Circumvention of Security Publications NSA SoS Lablets Materials	PDF document	299.21 KB	Download Preview

Attachment	Size
	bytes

Groups:

Terms of Use | ©2023. CPS-VO