KIT | KIT-Bibliothek | Impressum | Datenschutz

Vision: What Johnny learns about Password Security from Videos posted on YouTube

Christmann, Mathieu; Mayer, Peter ORCID iD icon; Volkamer, Melanie

Abstract:

The text password is the most pervasive authentication scheme and is unlikely to disappear in the near future. To reduce the risk of insecure password management endangering companies, these companies employ password awareness and training campaigns. While larger companies may buy measures for those campaigns externally or develop their own ones, small and medium sized companies (SMEs) are likely to turn to freely available material -- most likely videos -- and recommend or even force their employees to watch these. We analysed such freely available videos and show their shortcomings. To that end, we aggregated requirements from the existing literature and applied these to a body of 32 freely available YouTube videos using search terms informed by Google Trends. The contributions of this work are two-fold. Firstly, the findings of our analysis show that the best video covers only about half of the requirements, which raises serious concerns regarding the quality of available videos and their suitability for usage in awareness campaigns by SMEs. Secondly, our list of aggregated requirements can inform the design of future videos, which is planned as follow-up to this work in order to remedy the concerns uncovered in our analysis.


Zugehörige Institution(en) am KIT Institut für Angewandte Informatik und Formale Beschreibungsverfahren (AIFB)
Kompetenzzentrum für angewandte Sicherheitstechnologie (KASTEL)
Publikationstyp Proceedingsbeitrag
Publikationsjahr 2021
Sprache Englisch
Identifikator ISBN: 978-1-4503-8423-0
KITopen-ID: 1000135401
HGF-Programm 46.23.01 (POF IV, LK 01) Methods for Engineering Secure Systems
Erschienen in European Symposium on Usable Security (EuroUSEC), 11 - 12 Oktober 2021
Veranstaltung European Symposium on Usable Security (EuroUSEC 2021), Online, 11.10.2021 – 12.10.2021
Verlag Association for Computing Machinery (ACM)
Seiten 124-128
Serie ICPS Proceedings
Nachgewiesen in Dimensions
KIT – Die Forschungsuniversität in der Helmholtz-Gemeinschaft
KITopen Landing Page