Principles for designing authentication mechanisms for young children : lessons learned from KidzPass

Renaud, Karen and Volkamer, Melanie and Mayer, Peter and Grimm, Rüdiger (2021) Principles for designing authentication mechanisms for young children : lessons learned from KidzPass. AIS Transactions on Human Computer Interaction, 13 (4). 2. ISSN 1944-3900 (https://doi.org/10.17705/1thci.00155)

Preview

Text. Filename: Renaud_etal_TOCHI_2021_Principles_for_Designing_Authentication_Mechanisms_for_Young_Children.pdf Accepted Author Manuscript Download (10MB)| Preview

Abstract

Young children routinely authenticate themselves with alphanumeric passwords, but are probably not ready to use them, due to their emerging literacy and immaturity. They might adopt insecure coping tactics, which are likely to become entrenched. Because children have a superior pictorial recognition ability, graphical authentication mechanisms are likely to be more suitable mechanisms for this demographic. We propose and study KidzPass, a configurable graphical authentication framework, which can be used to tailor these mechanisms for children of different ages. We carried out two empirical investigations with children aged 4-5 and 6-7 using personalised images as secrets (familiar faces and self-drawn doodles). KidzPass proved efficacious and our young participants (ages 4-7) mostly preferred it to text passwords. The personalised images maximise memorability, but are time intensive to obtain. As children mature, it might be possible to replace these with generic images. We thus carried out a final empirical study with older children using generic images (chosen by the researcher). The third study indicated that generic images can indeed be viable if they display particular qualities, which we enumerate. From our experiences and the research literature, we conclude by providing principles to inform the design and evaluation of age-appropriate authentication mechanisms for young children, both from an ethical and technical perspective.

ORCID iDs

Renaud, Karen ORCID: https://orcid.org/0000-0002-7187-6531

• Share and Export
  

  Multiline CSVASCII CitationEndNoteMETSData Cite XMLSimple MetadataReferMPEG-21 DIDLOpenURL ContextObject in SpanMODSBibTeXOpenURL ContextObjectEP3 XMLRDF+N3RDF+XMLAtomRDF+N-TriplesHTML CitationJSONRIOXX2 XMLDublin CoreRefWorksRIS (EndNote Online, Zotero, Ref manager, etc)
• Item metadata

  Item type:	Article
  ID code:	77810
  Dates:	Date Event 31 December 2021 Published 14 September 2021 Accepted
  Subjects:	Science > Mathematics > Electronic computers. Computer science
  Department:	Faculty of Science > Computer and Information Sciences
  Depositing user:	Pure Administrator
  Date deposited:	16 Sep 2021 15:06
  Last modified:	22 Feb 2025 01:47
  Related URLs:	Journal or Publication
  URI:	https://strathprints.strath.ac.uk/id/eprint/77810