"Passwords protect my stuff" - a study of children's password practices

Choong, Yee-Yin and Theofanos, Mary F. and Renaud, Karen and Prior, Suzanne (2019) "Passwords protect my stuff" - a study of children's password practices. Journal of Cybersecurity, 5 (1). tyz015. ISSN 2057-2093 (https://doi.org/10.1093/cybsec/tyz015)

Preview

Text. Filename: Choong_etal_JCS_2019_a_study_of_childrens_password_practices.pdf Final Published Version License: Other Download (1MB)| Preview

Abstract

Children use technology from a very young age and often have to authenticate. The goal of this study is to explore children’s practices, perceptions, and knowledge regarding passwords. Given the limited work to date and that the world’s cyber posture and culture will be dependent on today’s youth, it is imperative to conduct cyber-security research with children. We conducted surveys of 189 3rd to 8th graders from two Midwest schools in the USA. We found that children have on average two passwords for school and three to four passwords for home. They kept their passwords private and did not share with others. They created passwords with an average length of 7 (3rd to 5th graders) and 10 (6–8th graders). But, only about 13% of the children created very strong passwords. Generating strong passwords requires mature cognitive and linguistic capabilities which children at this developmental stage have not yet mastered. They believed that passwords provide access control, protect their privacy and keep their “stuff” safe. Overall, children had appropriate mental models of passwords and demonstrated good password practices. Cyber-security education should strive to reinforce these positive practices while continuing to provide and promote age-appropriate developmental security skills. Given the study’s sample size and limited generalizability, we are expanding our research to include children from 3rd to 12th graders across multiple US school districts.

• Share and Export
  

  RDF+XMLBibTeXRIOXX2 XMLRDF+N-TriplesJSONDublin CoreAtomSimple MetadataReferMETSHTML CitationASCII CitationOpenURL ContextObjectEndNoteOpenURL ContextObject in SpanMODSMPEG-21 DIDLEP3 XMLData Cite XMLRIS (EndNote Online, Zotero, Ref manager, etc)RDF+N3Multiline CSV
• Item metadata

  Item type:	Article
  ID code:	75476
  Dates:	Date Event 13 December 2019 Published 29 October 2019 Accepted
  Notes:	This work is written by US Government employees and is in the public domain in the US.
  Subjects:	Science > Mathematics > Electronic computers. Computer science
  Department:	Faculty of Science > Computer and Information Sciences
  Depositing user:	Pure Administrator
  Date deposited:	18 Feb 2021 10:17
  Last modified:	09 Apr 2024 02:06
  URI:	https://strathprints.strath.ac.uk/id/eprint/75476