We gratefully acknowledge support from
the Simons Foundation and member institutions.
Full-text links:

Download:

Current browse context:

cs.HC
< prev | next >
new | recent | 1712

Change to browse by:

cs
cs.CR
cs.CY

References & Citations

DBLP - CS Bibliography

listing | bibtex

Bookmark

(what is this?)
CiteULike logo BibSonomy logo Mendeley logo del.icio.us logo Digg logo Reddit logo

Computer Science > Human-Computer Interaction

Title: Usability of Humanly Computable Passwords

Authors: Samira Samadi, Santosh Vempala, Adam Tauman Kalai
(Submitted on 11 Dec 2017 (v1), last revised 24 May 2018 (this version, v2))
Abstract: Reusing passwords across multiple websites is a common practice that compromises security. Recently, Blum and Vempala have proposed password strategies to help people calculate, in their heads, passwords for different sites without dependence on third-party tools or external devices. Thus far, the security and efficiency of these "mental algorithms" has been analyzed only theoretically. But are such methods usable? We present the first usability study of humanly computable password strategies, involving a learning phase (to learn a password strategy), then a rehearsal phase (to login to a few websites), and multiple follow-up tests. In our user study, with training, participants were able to calculate a deterministic eight-character password for an arbitrary new website in under 20 seconds.
Subjects: Human-Computer Interaction (cs.HC); Cryptography and Security (cs.CR); Computers and Society (cs.CY)
Cite as: arXiv:1712.03650 [cs.HC]
  (or arXiv:1712.03650v2 [cs.HC] for this version)

Submission history

From: Samira Samadi [view email]
[v1] Mon, 11 Dec 2017 05:52:47 GMT (507kb,D)
[v2] Thu, 24 May 2018 21:59:00 GMT (4866kb,D)
Which authors of this paper are endorsers? | Disable MathJax (What is MathJax?)

Link back to: arXiv, form interface, contact.