PSV (Password Security Visualizer): From Password Checking to User Education

Aljaffan, Nouf and Yuan, Haiyue and Li, Shujun (2017) PSV (Password Security Visualizer): From Password Checking to User Education. In: Tryfonas, Theo, ed. Human Aspects of Information Security, Privacy and Trust 5th International Conference. Lecture Notes in Computer Science, 10292 . Springer International Publishing AG, pp. 191-211. ISBN 978-3-319-58459-1. E-ISBN 978-3-319-58460-7. (doi:10.1007/978-3-319-58460-7_13) (KAR id:69560)

PDF Author's Accepted Manuscript Language: English
Download this file (PDF/1MB)
Request a format suitable for use with assistive technology e.g. a screenreader
Official URL: https://dx.doi.org/10.1007/978-3-319-58460-7_13

Abstract

This paper presents the Password Security Visualizer (PSV), an interactive visualization system specifically designed for password security education. PSV can be seen as a reconfigurable "box" containing different proactive password checkers (PPCs) and visualizers of password security information, allowing it to be used like a "many in one" or "hybrid" PPC. PSV can provide many new features that do not exist in traditional PPCs, thus having a greater potential to achieve its goals of educating users. Using purely client-side Web-based technologies, we implemented a prototype of PSV as an open-source software tool on a 2-D animated canvas. To evaluate the actual performance of our implemented PSV prototype against traditional PPCs, we conducted a semi-structured interview involving 20 human participants. Our qualitative analysis of the results showed that PSV was considered the most informative and recommended by most participants as a good educational tool. To the best of our knowledge, PSV is the first system combining different PPCs together for user education, and the user study is the first of this kind on comparing educational effectiveness of different PPCs (and PPC-like password security tools such as PSV).

Item Type:	Book section
DOI/Identification number:	10.1007/978-3-319-58460-7_13
Uncontrolled keywords:	Password, Security, Visualization, Password strength, Password checker, Password strength meter, Password cracking
Subjects:	L Education > LC Special aspects of education > LC5201 Education extension. Adult education. Continuing education Q Science > QA Mathematics (inc Computing science) > QA 75 Electronic computers. Computer science Q Science > QA Mathematics (inc Computing science) > QA 76 Software, computer programming, > QA76.76 Computer software > QA76.76.I59 Interactive media, hypermedia Q Science > QA Mathematics (inc Computing science) > QA 76 Software, computer programming, > QA76.9.H85 Human computer interaction T Technology > TK Electrical engineering. Electronics. Nuclear engineering > TK7800 Electronics > TK7880 Applications of electronics > TK7885 Computer engineering. Computer hardware
Divisions:	Divisions > Division of Computing, Engineering and Mathematical Sciences > School of Computing University-wide institutes > Institute of Cyber Security for Society
Funders:	Organisations -1 not found.
Depositing User:	Shujun Li
Date Deposited:	15 Oct 2018 06:00 UTC
Last Modified:	08 Dec 2022 22:14 UTC
Resource URI:	https://kar.kent.ac.uk/id/eprint/69560 (The current URI for this page, for reference purposes)

University of Kent Author Information

Li, Shujun.

Creator's ORCID:	https://orcid.org/0000-0001-5628-7328
CReDIT Contributor Roles:

Depositors only (login required):

Altmetric

Download Statistics

Total unique views for this document in KAR since July 2020. For more details click on the image.