Digitale Bibliotheek
Sluiten Bladeren door artikelen uit een tijdschrift
<< vorige    volgende >>
     Tijdschrift beschrijving
       Alle jaargangen van het bijbehorende tijdschrift
         Alle afleveringen van het bijbehorende jaargang
           Alle artikelen van de bijbehorende aflevering
                                       Details van artikel 3 van 13 gevonden artikelen
  A Novel Web-based Approach for Balancing Usability and Security Requirements of Text Passwords
Titel: A Novel Web-based Approach for Balancing Usability and Security Requirements of Text Passwords
Auteur: Dhananjay Kulkarni
Verschenen in: International journal of network security & its applications
Paginering: Jaargang 2 (2010) nr. 3 pagina's 1-16
Jaar: 2010
Inhoud: Many Internet applications, for example e-commerce or email services require that users create a username and passwordwhich serves as an authentication mechanism. Though text passwords have been around for a while, not muchhas been done in helping naive Internet users in creating strong passwords. Generally users prefer easy-to-rememberpasswords, but service provides prefer that users use a strong, difficult-to-guess password policy to protect their ownresources. In this work we have explored how appropriate feedback on password strength can be useful in choosing astrong password. We first discuss the results of a security vs. usability study that we did, which shows the currenttrends in choosing passwords, and how a password cracking tools can easily guess a majority of weak passwords. Next,we propose a novel framework, which addresses our problem of enforcing password policies. Given a password policy,our framework is able to monitor password strength, and suggest passwords that are stronger. Moreover, since ourpasswords are pareto-efficient, and involve user participation in making a selection, we believe that our frameworkmakes appropriate tradeoffs between password strength and difficulty in remembering. We also propose novel ways tocompute the password reminder interval so that user-satisfaction remains within bounds. Experimental study showsthat our approach is much better that current password creation models, and serves as a practical tool that can beintegrated with Internet applications.
Uitgever: Academy & Industry Research Collaboration Center (AIRCC) (provided by DOAJ)
Bronbestand: Elektronische Wetenschappelijke Tijdschriften

                             Details van artikel 3 van 13 gevonden artikelen
<< vorige    volgende >>
 Koninklijke Bibliotheek - Nationale Bibliotheek van Nederland