Pictures at the ATM: exploring the usability of multiple graphical passwords

Wendy Moncur, Gregory LePlatre

    Research output: Chapter in Book/Report/Conference proceedingConference contribution

    67 Citations (Scopus)

    Abstract

    Users gain access to cash, confidential information and services at Automated Teller Machines (ATMs) via an authentication process involving a Personal Identification Number (PIN). These users frequently have many different PINs, and fail to remember them without recourse to insecure behaviours. This is not a failing of users. It is a usability failing in the ATM authentication mechanism. This paper describes research executed to evaluate whether users find multiple graphical passwords more memorable than multiple PINs. The research also investigates the success of two memory augmentation strategies in increasing memorability of graphical passwords. The results demonstrate that multiple graphical passwords are substantially more effective than multiple PIN numbers. Memorability is further improved by the use of mnemonics to aid their recall.This study will be of interest to HCI practitioners and information security researchers exploring approaches to usable security.
    Original languageEnglish
    Title of host publicationCHI '07
    Subtitle of host publicationProceedings of the SIGCHI Conference on Human Factors in Computing Systems
    Place of PublicationNew York
    PublisherAssociation for Computing Machinery
    Pages887-894
    Number of pages8
    ISBN (Print)9781595935939
    DOIs
    Publication statusPublished - 2007
    EventCHI 2007 Conference on Human Factors in Computing Systems - San Jose, California, United States
    Duration: 28 Apr 20073 May 2007
    http://www.chi2007.org/

    Conference

    ConferenceCHI 2007 Conference on Human Factors in Computing Systems
    Abbreviated titleCHI 2007
    Country/TerritoryUnited States
    CitySan Jose, California
    Period28/04/073/05/07
    Internet address

    Fingerprint

    Dive into the research topics of 'Pictures at the ATM: exploring the usability of multiple graphical passwords'. Together they form a unique fingerprint.

    Cite this