Visible to the public Biblio

Filters: Author is Belk, Marios  [Clear All Filters]
2018-08-23
Belk, Marios, Pamboris, Andreas, Fidas, Christos, Katsini, Christina, Avouris, Nikolaos, Samaras, George.  2017.  Sweet-spotting Security and Usability for Intelligent Graphical Authentication Mechanisms. Proceedings of the International Conference on Web Intelligence. :252–259.
This paper investigates the trade-off between security and usability in recognition-based graphical authentication mechanisms. Through a user study (N=103) based on a real usage scenario, it draws insights about the security strength and memorability of a chosen password with respect to the amount of images presented to users during sign-up. In particular, it reveals the users' predisposition in following predictable patterns when selecting graphical passwords, and its effect on practical security strength. It also demonstrates that a "sweet-spot" exists between security and usability in graphical authentication approaches on the basis of adjusting accordingly the image grid size presented to users when creating passwords. The results of the study can be leveraged by researchers and practitioners engaged in designing intelligent graphical authentication user interfaces for striking an appropriate balance between security and usability.
2017-05-19
Katsini, Christina, Belk, Marios, Fidas, Christos, Avouris, Nikolaos, Samaras, George.  2016.  Security and Usability in Knowledge-based User Authentication: A Review. Proceedings of the 20th Pan-Hellenic Conference on Informatics. :63:1–63:6.

This paper presents a comprehensive review of state-of-the-art research works in knowledge-based user authentication, covering the security and usability aspects of the most prominent user authentication schemes; text-, pin- and graphical-based. From the security perspective, we analyze current threats from a user and service provider perspective. Furthermore, based on current practices in authentication policies, we summarize and discuss their security strengths based on widely applied security metrics. From the usability point of view, we present and discuss the usability of each authentication scheme in regards with task performance and user experience. The analysis reveals that although a plethora of alternative user authentication schemes have been proposed in the literature and users interact differently with the various alternatives, online service providers do not yet adopt alternatives to text-based solutions. We further discuss and identify areas for further research and improved methodology with the aim to drive this research towards the design of sustainable, secure and usable authentication approaches.