KIT | KIT-Bibliothek | Impressum | Datenschutz
DOI: 10.1145/3274694.3274747

On The Systematic Development and Evaluation Of Password Security Awareness-Raising Materials [in press]

Mayer, Peter; Schwartz, Christian; Volkamer, Melanie

Text passwords play an important role in protecting the assets of organisations. Thus, it is of the essence, that employees are well aware of possible attacks and defences. To that end, we developed a password security awareness-raising material in a systematic iterative process: The material is based on the literature on password security, feedback of independent experts, and feedback of lay-users. It was evaluated in the field with employees of three organisations. Our results show that the participating employees improved their abilities to (1) discern secure from insecure password-related behaviour in a variety of scenarios relating to different attacks and (2) assess passwords as secure or insecure. These improved abilities of the participants were still present in a retention after six months. Thus, the developed awareness-raising material contributes to improving the password-related security in organisations.

Zugehörige Institution(en) am KIT Institut für Angewandte Informatik und Formale Beschreibungsverfahren (AIFB)
Kompetenzzentrum für angewandte Sicherheitstechnologie (KASTEL)
Publikationstyp Proceedingsbeitrag
Jahr 2018
Sprache Englisch
Identifikator KITopen-ID: 1000086098
Erschienen in ACSAC 2018 : Computer Security Applications Conference, San Juan, Puerto Rico, USA, 3rd - 7th Dec, 2018
Schlagworte Passwords, Usable Security, Awareness, User Study
KIT – Die Forschungsuniversität in der Helmholtz-Gemeinschaft KITopen Landing Page