Book Chapter

The memorability and security of passwords

  • Yan J
  • Blackwell A
  • Anderson R
  • et al.
(2000), 714
N/ACitations
Citations of this article
11Readers
Mendeley users who have this article in their library.

Abstract

There are many things that are 'well known' about passwords , such as that uers can't remember strong passwords and that the passwords they can remember are easy to guess. However, there seems to be a distinct lack of research on the subject that would pass muster by the standards of applied psychology. Here we report a controlled trial in which, of four sample groups of about 100 first-year students, three were recruited to a formal experiment and of these two were given specific advice about password selection. The incidence of weak passwords was determined by cracking the password file, and the number of password resets was measured from system logs. We observed a number of phenomena which run counter to the established wisdom. For example, passwords based on mnemonic phrases are just as hard to crack as random passwords yet just as easy to remember as naive user selections.

Cite

CITATION STYLE

APA

Yan, J., Blackwell, A., Anderson, R., & Grant, A. (2000). The memorability and security of passwords. In Security and Usability: Designing Secure Systems That People Can Use (p. 714). Retrieved from http://www.cl.cam.ac.uk/http://www.cl.cam.ac.uk/TechReports/

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free