JavaScript is disabled for your browser. Some features of this site may not work without it.
| Title: | Forgetting of passwords: Ecological theory and data |
| Author(s): | Gao, Xianyi ; Yang, Yulong ; Liu, Can ; Mitropoulos, Christos ; Lindqvist, Janne ; Oulasvirta, Antti |
| Date: | 2018 |
| Language: | en |
| Pages: | 221-238 |
| Department: | Rutgers - The State University of New Jersey Helsinki Institute for Information Technology (HIIT) Department of Communications and Networking |
| ISBN: | 978-1-931971-46-1 |
| Series: | Proceedings of the 27th USENIX Security Symposium |
|
|
|
|
This publication is imported from Aalto University Research information portal: https://research.aalto.fi
> View this publication in Research information portal > Other link related to publication (Research information portal) |
|
|
Gao , X , Yang , Y , Liu , C , Mitropoulos , C , Lindqvist , J & Oulasvirta , A 2018 , Forgetting of passwords: Ecological theory and data . in Proceedings of the 27th USENIX Security Symposium . USENIX - THE ADVANCED COMPUTING SYSTEMS ASSOCIATION , pp. 221-238 , USENIX Security Symposium , Baltimore , Maryland , United States , 15/08/2018 . < https://www.usenix.org/system/files/conference/usenixsecurity18/sec18-gao.pdf > |
|
Abstract:It is well known that text-based passwords are hard to remember and that users prefer simple (and non-secure) passwords. However, despite extensive research on the topic, no principled account exists for explaining when a password will be forgotten. This paper contributes new data and a set of analyses building on the ecological theory of memory and forgetting. We propose that human memory naturally adapts according to an estimate of how often a password will be needed, such that often used, important passwords are less likely to be forgotten. We derive models for login duration and odds of recall as a function of rate of use and number of uses thus far. The models achieved a root-mean-square error (RMSE) of 1.8 seconds for login duration and 0.09 for recall odds for data collected in a month-long field experiment where frequency of password use was controlled. The theory and data shed new light on password management, account usage, password security and memorability.
|
|
|
|
|
|
|
|
Files in this item
| Files | Size | Format | View |
|---|---|---|---|
|
There are no open access files associated with this item. |
|||
This item appears in the following Collection(s)
Submit a publication
Browse
Statistics
© Aalto University Learning Centre
Page content by: Aalto University Learning Centre | Privacy policy of the service | About this site
en