期刊名称:International Journal of Computer Science and Network Security
印刷版ISSN:1738-7906
出版年度:2020
卷号:20
期号:4
页码:175-181
出版社:International Journal of Computer Science and Network Security
摘要:Knowledge-based authentication (KBA) is the process where users authenticate their identities by having knowledge of a specific secret which confirms the authentication e.g. passwords. Humans have issues with remembering non-meaningful strings, so they keep choosing weak passwords. This clearly shows the trade-off between usability and security where a decrease in usability might negatively impact security. To overcome this issue, user authentication approaches should find a way to reduce the burden on user’s memory so they can choose stronger passwords. The relation between security and usability is much complicated than that. For example, increasing security measures might decrease usability. So, in this paper we argue that this trade-off must be managed effectively. A hybrid authentication system is proposed as an alternative to the traditional password-based authentication. A user study was used to investigate the feasibility of this alternative system by integrating it into a students’ university portal.
关键词:Security; Usability; Knowledge-based authentication; User study
