Nosseir, Ann and Connor, Richard and Revie, Crawford (2006) An empirical study of an authentication. In: ACM Human Computer Interaction Conference, 2006-04-24 - 2006-04-27, Montreal, Canada.
Full text not available in this repository. (Request a copy from the Strathclyde author)Abstract
On the Internet, there is an uneasy tension between the security and usability of authentication mechanisms. An easy three-part classification is: 'something you know' (e.g. password); 'something you hold' (e.g. device holding digital certificate), and 'who you are' (e.g. biometric assessment) [9]. Each of these has well-known problems; passwords are written down, guessable, or forgotten; devices are lost or stolen, and biometric assays alienate users. We have investigated a novel strategy of querying the user based on their personal history (a 'Rip van Winkle' approach.) The sum of this information is large and well-known only to the individual. The volume is too large for impostors to learn; our observation is that, in the emerging environment, it is possible to collate and automatically query such information as an authentication test.
| Item type: | Conference or Workshop Item (Paper) |
|---|---|
| ID code: | 3161 |
| Keywords: | internet authentication, internet security, usability, Electronic computers. Computer science |
| Subjects: | Science > Mathematics > Electronic computers. Computer science |
| Department: | Faculty of Science > Computer and Information Sciences Learning Services |
| Related URLs: | |
| Depositing user: | Strathprints Administrator |
| Date Deposited: | 20 May 2007 |
| Last modified: | 04 Oct 2012 17:03 |
| URI: | http://strathprints.strath.ac.uk/id/eprint/3161 |
Actions (login required)
| View Item |