✦ LIBER ✦

[ACM Press the 4th symposium - Pittsburgh, Pennsylvania (2008.07.23-2008.07.25)] Proceedings of the 4th symposium on Usable privacy and security - SOUPS '08 - Personal knowledge questions for fallback authentication

✍ Scribed by Rabkin, Ariel

Book ID: 115484358
Publisher: ACM Press
Year: 2008
Weight: 199 KB
Volume: 0
Category: Article
ISBN: 160558276X
DOI: 10.1145/1408664.1408667

No coin nor oath required. For personal study only.

✦ Synopsis

Security questions (or challenge questions) are commonly used to authenticate users who have lost their passwords. We examined the password retrieval mechanisms for a number of personal banking websites, and found that many of them rely in part on security questions with serious usability and security weaknesses. We discuss patterns in the security questions we observed. We argue that today's personal security questions owe their strength to the hardness of an information-retrieval problem. However, as personal information becomes ubiquitously available online, the hardness of this problem, and security provided by such questions, will likely diminish over time. We supplement our survey of bank security questions with a small user study that supplies some context for how such questions are used in practice.

📜 SIMILAR VOLUMES

[ACM Press the 4th symposium - Pittsburg

[ACM Press the 4th symposium - Pittsburgh, Pennsylvania (2008.07.23-2008.07.25)] Proceedings of the 4th symposium on Usable privacy and security - SOUPS '08 - Personal knowledge questions for fallback authentication

✍ Rabkin, Ariel 📂 Article 📅 2008 🏛 ACM Press ⚖ 199 KB

[ACM Press the 2005 symposium - Pittsbur

[ACM Press the 2005 symposium - Pittsburgh, Pennsylvania (2005.07.06-2005.07.08)] Proceedings of the 2005 symposium on Usable privacy and security - SOUPS '05 - Authentication using graphical passwords

✍ Wiedenbeck, Susan; Waters, Jim; Birget, Jean-Camille; Brodskiy, Alex; Memon, Nas 📂 Article 📅 2005 🏛 ACM Press 🌐 English ⚖ 543 KB

Rebecca Grinter ...[et Al.], Editors. Acm Order Number 608063--t.p. Verso. Includes Bibliographical References And Indexes.

[ACM Press the Seventh Symposium - Pitts

[ACM Press the Seventh Symposium - Pittsburgh, Pennsylvania (2011.07.20-2011.07.22)] Proceedings of the Seventh Symposium on Usable Privacy and Security - SOUPS '11 - On the challenges in usable security lab studies

✍ Sotirakopoulos, Andreas; Hawkey, Kirstie; Beznosov, Konstantin 📂 Article 📅 2011 🏛 ACM Press ⚖ 559 KB

[ACM Press the 4th international worksho

[ACM Press the 4th international workshop - Sorrento, Italy (2008.07.07-2008.07.07)] Proceedings of the 4th international workshop on Security, privacy and trust in pervasive and ubiquitous computing - SecPerU '08 - Polymorphic worm detection using token-pair signatures

✍ Bayoglu, Burak; Sogukpinar, Ibrahim 📂 Article 📅 2008 🏛 ACM Press ⚖ 242 KB

[ACM Press the 4th ACM/IEEE Symposium -

[ACM Press the 4th ACM/IEEE Symposium - San Jose, California (2008.11.06-2008.11.07)] Proceedings of the 4th ACM/IEEE Symposium on Architectures for Networking and Communications Systems - ANCS '08 - Implementing an OpenFlow switch on the NetFPGA platform

✍ Naous, Jad; Erickson, David; Covington, G. Adam; Appenzeller, Guido; McKeown, Ni 📂 Article 📅 2008 🏛 ACM Press ⚖ 613 KB

[ACM Press the 4th ACM/IEEE Symposium -

[ACM Press the 4th ACM/IEEE Symposium - San Jose, California (2008.11.06-2008.11.07)] Proceedings of the 4th ACM/IEEE Symposium on Architectures for Networking and Communications Systems - ANCS '08 - Acceleration of decision tree searching for IP traffic classification

✍ Luo, Yan; Xiang, Ke; Li, Sanping 📂 Article 📅 2008 🏛 ACM Press ⚖ 334 KB