Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
A second look at password composition policies in the wild: Comparing samples from 2010 and 2016
Faculty of Computer Sciences, Technische Universitat Darmstadt, Darmstadt, Hessen, Germany.
Technische Universität Darmstadt.
Karlstad University, Faculty of Health, Science and Technology (starting 2013), Department of Mathematics and Computer Science (from 2013). (PriSec)ORCID iD: 0000-0003-2674-4043
2017 (English)In: Proceedings of the Thirteenth Symposium on Usable Privacy and Security (SOUPS 2017), Usenix, The advanced computer systems associaton , 2017, p. 13-28Conference paper, Published paper (Refereed)
Abstract [en]

In this paper we present a replication and extension of the study performed by Flor^encio and Herley published at SOUPS 2010. They investigated a sample of US websites, examining different website features' effects on the strength of the website's password composition policy (PCP). Using the same methodology as in the original study, we re-investigated the same US websites to identify differences over time. We then extended the initial study by investigating a corresponding sample of German websites in order to identify differences across countries. Our findings indicate that while the website features mostly retain their predicting power for the US sample, only one feature affecting PCP strength translates to the German sample: whether users can choose among multiple alternative websites providing the same service. Moreover, German websites generally use weaker PCPs and, in particular, PCPs of German banking websites stand out for having generally low strength PCPs

 

Place, publisher, year, edition, pages
Usenix, The advanced computer systems associaton , 2017. p. 13-28
National Category
Information Systems Computer Sciences
Research subject
Computer Science
Identifiers
URN: urn:nbn:se:kau:diva-65615ISBN: 978-1-931971-39-3 (electronic)OAI: oai:DiVA.org:kau-65615DiVA, id: diva2:1174655
Conference
SOUPS Thirteenth Symposium on Usable Privacy and Security, July 12–14, 2017, Santa Clara, CA, USA
Available from: 2018-01-16 Created: 2018-01-16 Last updated: 2018-07-03Bibliographically approved

Open Access in DiVA

fulltext(835 kB)1 downloads
File information
File name FULLTEXT01.pdfFile size 835 kBChecksum SHA-512
600928b6487dd38e580d6c597eb05eb74fde95768f28086a057389dac904ea4ea97978ffabf1c6ff8eeb738c308a8d9a8322c12c264c4aecad03e7adf7ea867b
Type fulltextMimetype application/pdf

Other links

https://www.usenix.org/conference/soups2017/technical-sessions

Authority records BETA

Volkamer, Melanie

Search in DiVA

By author/editor
Volkamer, Melanie
By organisation
Department of Mathematics and Computer Science (from 2013)
Information SystemsComputer Sciences

Search outside of DiVA

GoogleGoogle Scholar
Total: 1 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

isbn
urn-nbn

Altmetric score

isbn
urn-nbn
Total: 15 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf