close
  • Sc chevron_right

    On Risk-Based Authentication

    news.movim.eu / Schneier · Monday, 5 October - 16:47

Interesting usability study: “ More Than Just Good Passwords? A Study on Usability and Security Perceptions of Risk-based Authentication “:

Abstract : Risk-based Authentication (RBA) is an adaptive security measure to strengthen password-based authentication. RBA monitors additional features during login, and when observed feature values differ significantly from previously seen ones, users have to provide additional authentication factors such as a verification code. RBA has the potential to offer more usable authentication, but the usability and the security perceptions of RBA are not studied well.

We present the results of a between-group lab study (n=65) to evaluate usability and security perceptions of two RBA variants, one 2FA variant, and password-only authentication. Our study shows with significant results that RBA is considered to be more usable than the studied 2FA variants, while it is perceived as more secure than password-only authentication in general and comparably se-cure to 2FA in a variety of application types. We also observed RBA usability problems and provide recommendations for mitigation.Our contribution provides a first deeper understanding of the users’perception of RBA and helps to improve RBA implementations for a broader user acceptance.

Paper’s website . I’ve blogged about risk-based authentication before.

  • Be chevron_right

    Requirements Elicitation for Usable Systems

    debacle · pubsub.movim.eu / berlin-xmpp-meetup · Saturday, 7 March, 2020 - 14:47

Requirements Elicitation for Usable Systems

This time, we will enjoy a remote talk about requirements engineering and usability. This talk is not only related to XMPP, but we surely will have a vibrant discussion how to apply the lesson learned in XMPP.

Furthermore we will talk about the Berlin XMPP Sprint, planned for end of March.

When? Wednesday, 2020-03-11 18:00 CET (always 2ⁿᵈ Wednesday of every month)

Where?xHain hack+makespace, Grünberger Str. 16, 10243 Berlin (as always)

See you then!

Or join our non-physical room (xmpp:berlin-meetup@conference.conversations.im?join)!

#xmpp #community #xhain #freesoftware #berlin #meetup #sprint #usability #requirementsengineering