UCL Discovery
UCL home » Library Services » Electronic resources » UCL Discovery

Pretty Good Persuasion: a First Step Towards Effective Password Security in the Real World

Weirich, D; Sasse, MA; (2001) Pretty Good Persuasion: a First Step Towards Effective Password Security in the Real World. In: Raskin, Victor and Greenwald, Steven J, (eds.) Proceedings New Security Paradigms Workshop. (pp. 137 - 143). ACM: USA: New York. Green open access

[img]
Preview
Text
p137-weirich- NSPW2001.pdf

Download (715kB)

Abstract

In the past,research on password mechanisms has focussed almost entirely on technical issues. Only in recent years has the security research community acknowledged that user behavior plays a part in many security failures, and that policies alone may not be sufficient to ensure correct behavior. We argue that password mechanisms and their users form a socio-technical system, whose effectiveness relies strongly on users' willingness to make the extra effort that security-censcious behavior requires. In most organizations, users cannot be forced to comply; rather, they have to be persuaded to do so. Ultimately, the mechanisms themselves, policies, tutorials, training and the general discourse have to be designed with their persuasive power in mind. We present the results of a first study that can guide such persuasive efforts, and describe methods that can be used to persuade users to employ proper password practice.

Type: Proceedings paper
Title: Pretty Good Persuasion: a First Step Towards Effective Password Security in the Real World
Event: NSPW '01: 2001 Workshop on New Security Paradigms
ISBN: 1-58113-457-6
Open access status: An open access version is available from UCL Discovery
DOI: 10.1145/508171.508195
Publisher version: http://dx.doi.org/10.1145/508171.508195
Language: English
Additional information: This version is the author accepted manuscript. For information on re-use, please refer to the publisher’s terms and conditions.
Keywords: security, passwords, user-centered design,cognitive task analysis, user training, motivation
UCL classification: UCL
UCL > Provost and Vice Provost Offices
UCL > Provost and Vice Provost Offices > UCL BEAMS
UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science
UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science > Dept of Computer Science
URI: https://discovery.ucl.ac.uk/id/eprint/20252
Downloads since deposit
140Downloads
Download activity - last month
Download activity - last 12 months
Downloads by country - last 12 months

Archive Staff Only

View Item View Item