Complexity metrics and user strength perceptions of the pattern-lock graphical authentication method

Panagiotis Andriotis; Theo Tryfonas; George Oikonomou

doi:10.1007/978-3-319-07620-1

Complexity metrics and user strength perceptions of the pattern-lock graphical authentication method

Panagiotis Andriotis, Theo Tryfonas, George Oikonomou

Research output: Chapter in Book/Report/Conference proceeding › Conference Contribution (Conference Proceeding)

Abstract

One of the most popular contemporary graphical password approaches is the Pattern-Lock authentication mechanism that comes integrated with the Android mobile operating system. In this paper we investigate the impact of password strength meters on the selection of a perceivably secure pattern. We first define a suitable metric to measure pattern strength, taking into account the constraints imposed by the Pattern-Lock mechanism's design. We then implement an app via which we conduct a survey for Android users, retaining demographic information of responders and their perceptions on what constitutes a pattern complex enough to be secure. Subsequently, we display a pattern strength meter to the participant and investigate whether this additional prompt influences the user to change their pattern to a more effective and complex one. We also investigate potential correlations between our findings and results of a previous pilot study in order to detect any significant biases on setting a Pattern-Lock.

Original language	English
Title of host publication	Human Aspects of Information Security, Privacy, and Trust - HAS 2014
Editors	Theo Tryfonas, Ioannis G. Askoxylakis
Publisher	Springer Berlin Heidelberg
Pages	115-126
Volume	8533
DOIs	https://doi.org/10.1007/978-3-319-07620-1
Publication status	Published - 2014
Event	HCII 2014 - Chersonissos, Heraklion, Greece Duration: 22 Jun 2014 → 27 Jun 2014

Publication series

Name	Lecture Notes in Computer Science
Publisher	Springer

Conference

Conference	HCII 2014
Country/Territory	Greece
City	Heraklion
Period	22/06/14 → 27/06/14

Keywords

Security
Android
password
bias
usability
feedback

Access to Document

10.1007/978-3-319-07620-1

Handle.net

Persistent link

Forensic Tools Against Illegal Use of Internet (ForToo)
Andriotis, P. (Researcher), Haghighi, M. (Researcher), Li, S. (Researcher), Oikonomou, G. (Researcher), Wojcik, M. (Researcher) & Tryfonas, T. (Principal Investigator)
17/06/11 → 16/10/14
Project: Research

City University London Invited Talk
Oikonomou, G. (Speaker)
27 Mar 2014
Activity: Participating in or organising an event types › Invited talk

Cite this

Andriotis, P., Tryfonas, T., & Oikonomou, G. (2014). Complexity metrics and user strength perceptions of the pattern-lock graphical authentication method. In T. Tryfonas, & I. G. Askoxylakis (Eds.), Human Aspects of Information Security, Privacy, and Trust - HAS 2014 (Vol. 8533, pp. 115-126). (Lecture Notes in Computer Science). Springer Berlin Heidelberg. https://doi.org/10.1007/978-3-319-07620-1

Andriotis, Panagiotis ; Tryfonas, Theo ; Oikonomou, George. / Complexity metrics and user strength perceptions of the pattern-lock graphical authentication method. Human Aspects of Information Security, Privacy, and Trust - HAS 2014. editor / Theo Tryfonas ; Ioannis G. Askoxylakis. Vol. 8533 Springer Berlin Heidelberg, 2014. pp. 115-126 (Lecture Notes in Computer Science).

@inproceedings{27664cfdd24c4ddab17b33b2c9720552,

title = "Complexity metrics and user strength perceptions of the pattern-lock graphical authentication method",

abstract = "One of the most popular contemporary graphical password approaches is the Pattern-Lock authentication mechanism that comes integrated with the Android mobile operating system. In this paper we investigate the impact of password strength meters on the selection of a perceivably secure pattern. We first define a suitable metric to measure pattern strength, taking into account the constraints imposed by the Pattern-Lock mechanism's design. We then implement an app via which we conduct a survey for Android users, retaining demographic information of responders and their perceptions on what constitutes a pattern complex enough to be secure. Subsequently, we display a pattern strength meter to the participant and investigate whether this additional prompt influences the user to change their pattern to a more effective and complex one. We also investigate potential correlations between our findings and results of a previous pilot study in order to detect any significant biases on setting a Pattern-Lock.",

keywords = "Security, Android, password, bias, usability, feedback",

author = "Panagiotis Andriotis and Theo Tryfonas and George Oikonomou",

year = "2014",

doi = "10.1007/978-3-319-07620-1",

language = "English",

volume = "8533",

series = "Lecture Notes in Computer Science",

publisher = "Springer Berlin Heidelberg",

pages = "115--126",

editor = "Theo Tryfonas and Askoxylakis, {Ioannis G.}",

booktitle = "Human Aspects of Information Security, Privacy, and Trust - HAS 2014",

address = "Germany",

note = "HCII 2014 ; Conference date: 22-06-2014 Through 27-06-2014",

}

Andriotis, P, Tryfonas, T & Oikonomou, G 2014, Complexity metrics and user strength perceptions of the pattern-lock graphical authentication method. in T Tryfonas & IG Askoxylakis (eds), Human Aspects of Information Security, Privacy, and Trust - HAS 2014. vol. 8533, Lecture Notes in Computer Science, Springer Berlin Heidelberg, pp. 115-126, HCII 2014, Heraklion, Greece, 22/06/14. https://doi.org/10.1007/978-3-319-07620-1

Complexity metrics and user strength perceptions of the pattern-lock graphical authentication method. / Andriotis, Panagiotis; Tryfonas, Theo ; Oikonomou, George.
Human Aspects of Information Security, Privacy, and Trust - HAS 2014. ed. / Theo Tryfonas; Ioannis G. Askoxylakis. Vol. 8533 Springer Berlin Heidelberg, 2014. p. 115-126 (Lecture Notes in Computer Science).

Research output: Chapter in Book/Report/Conference proceeding › Conference Contribution (Conference Proceeding)

TY - GEN

T1 - Complexity metrics and user strength perceptions of the pattern-lock graphical authentication method

AU - Andriotis, Panagiotis

AU - Tryfonas, Theo

AU - Oikonomou, George

PY - 2014

Y1 - 2014

N2 - One of the most popular contemporary graphical password approaches is the Pattern-Lock authentication mechanism that comes integrated with the Android mobile operating system. In this paper we investigate the impact of password strength meters on the selection of a perceivably secure pattern. We first define a suitable metric to measure pattern strength, taking into account the constraints imposed by the Pattern-Lock mechanism's design. We then implement an app via which we conduct a survey for Android users, retaining demographic information of responders and their perceptions on what constitutes a pattern complex enough to be secure. Subsequently, we display a pattern strength meter to the participant and investigate whether this additional prompt influences the user to change their pattern to a more effective and complex one. We also investigate potential correlations between our findings and results of a previous pilot study in order to detect any significant biases on setting a Pattern-Lock.

AB - One of the most popular contemporary graphical password approaches is the Pattern-Lock authentication mechanism that comes integrated with the Android mobile operating system. In this paper we investigate the impact of password strength meters on the selection of a perceivably secure pattern. We first define a suitable metric to measure pattern strength, taking into account the constraints imposed by the Pattern-Lock mechanism's design. We then implement an app via which we conduct a survey for Android users, retaining demographic information of responders and their perceptions on what constitutes a pattern complex enough to be secure. Subsequently, we display a pattern strength meter to the participant and investigate whether this additional prompt influences the user to change their pattern to a more effective and complex one. We also investigate potential correlations between our findings and results of a previous pilot study in order to detect any significant biases on setting a Pattern-Lock.

KW - Security

KW - Android

KW - password

KW - bias

KW - usability

KW - feedback

U2 - 10.1007/978-3-319-07620-1

DO - 10.1007/978-3-319-07620-1

M3 - Conference Contribution (Conference Proceeding)

VL - 8533

T3 - Lecture Notes in Computer Science

SP - 115

EP - 126

BT - Human Aspects of Information Security, Privacy, and Trust - HAS 2014

A2 - Tryfonas, Theo

A2 - Askoxylakis, Ioannis G.

PB - Springer Berlin Heidelberg

T2 - HCII 2014

Y2 - 22 June 2014 through 27 June 2014

ER -

Andriotis P, Tryfonas T , Oikonomou G. Complexity metrics and user strength perceptions of the pattern-lock graphical authentication method. In Tryfonas T, Askoxylakis IG, editors, Human Aspects of Information Security, Privacy, and Trust - HAS 2014. Vol. 8533. Springer Berlin Heidelberg. 2014. p. 115-126. (Lecture Notes in Computer Science). doi: 10.1007/978-3-319-07620-1

Complexity metrics and user strength perceptions of the pattern-lock graphical authentication method

Abstract

Publication series

Conference

Keywords

Access to Document

Handle.net

Fingerprint

Projects

Forensic Tools Against Illegal Use of Internet (ForToo)

Activities

City University London Invited Talk

Cite this