(2019) Stop to Unlock - Improving the Security of Android Unlock Patterns.
|
Text
usec2019_04-2_Suchan_paper.pdf Download (317kB) | Preview |
Abstract
Android unlock patterns are among the most common authentication mechanisms on mobile devices. They are fast and easy to use but also lack security as user-chosen gestures are easy to guess and easy to observe. To improve the traditional pattern approach, we propose Stop2Unlock, a usable but more secure modification of the traditional pattern lock. Stop2Unlock allows users to define nodes where they stop for a limited amount of time before swiping to the next node. We performed a lab study (n=40) and a field study (n=14) to show that this small change in user interaction can have a significant impact on security with a minimal impact on usability. That is, user-selected Stop2Unlock patterns are significantly harder to guess while being comparable in terms of usability. Additional analysis showed that users perceived the stop component as a rhythmic and memorable cue which supported the selection of higher entropy patterns.
| Item Type: | Conference or Workshop Item (A Paper) (Paper) |
|---|---|
| Divisions: | Katharina Krombholz (Human-Oriented Security, HOS) |
| Conference: | USEC Usable Security and Privacy |
| Depositing User: | Katharina Krombholz |
| Date Deposited: | 26 Feb 2019 13:24 |
| Last Modified: | 24 Oct 2020 16:51 |
| Primary Research Area: | NRA5: Empirical & Behavioral Security |
| URI: | https://publications.cispa.saarland/id/eprint/2806 |
Actions
Actions (login required)
 |
View Item |