Skip to Main content Skip to Navigation
New interface
Conference papers

Assisting Users to Create Stronger Passwords Using ContextBased MicroTraining

Abstract : In this paper, we describe and evaluate how the learning framework ContextBased MicroTraining (CBMT) can be used to assist users to create strong passwords. Rather than a technical enforcing measure, CBMT is a framework that provides information security training to users when they are in a situation where the training is directly relevant. The study is carried out in two steps. First, a survey is used to measure how well users understand password guidelines that are presented in different ways. The second part measures how using CBMT to present password guidelines affect the strength of the passwords created. This experiment was carried out by implementing CBMT at the account registration page of a local internet service provider and observing the results on user-created passwords. The results of the study show that users presented with passwords creation guidelines using a CBMT learning module do understand the password creation guidelines to a higher degree than other users. Further, the experiment shows that users presented with password guidelines in the form of a CBMT learning module do create passwords that are longer and more secure than other users. The assessment of password security was performed using the zxcvbn tool, developed by Dropbox, that measures password entropy.
Document type :
Conference papers
Complete list of metadata

https://hal.inria.fr/hal-03440869
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Monday, November 22, 2021 - 3:40:01 PM
Last modification on : Monday, November 22, 2021 - 4:37:32 PM
Long-term archiving on: : Wednesday, February 23, 2022 - 8:01:16 PM

File

 Restricted access
To satisfy the distribution rights of the publisher, the document is embargoed until : 2023-01-01

Please log in to resquest access to the document

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Collections

Citation

Joakim Kävrestad, Marcus Nohlberg. Assisting Users to Create Stronger Passwords Using ContextBased MicroTraining. 35th IFIP International Conference on ICT Systems Security and Privacy Protection (SEC), Sep 2020, Maribor, Slovenia. pp.95-108, ⟨10.1007/978-3-030-58201-2_7⟩. ⟨hal-03440869⟩

Share

Metrics

Record views

15