Password composition and security: an exploratory study of user practice

John Campbell, Kay Bryant

Research output: A Conference proceeding or a Chapter in BookConference contribution

Abstract

User authentication is a vital element in ensuring the secure operation of computer-based systems. The most common control mechanism for authenticating user access to computerised information systems is the use of passwords. Password-based systems remain the predominant method of user authentication despite the many sophisticated and viable security alternatives that have emerged from research and development. However, evidence suggests that this method is often compromised by poor security practices. This paper presents the results of a survey that examines user practice in creating and using password keys. This paper reports the findings from a pilot study examining user password composition and security practices for e-mail. Despite a greater awareness of security issues, the results show that an improvement in user password management practice is required
Original languageEnglish
Title of host publicationProceedings of the fifteenth Australasian conference on Information Systems
EditorsJaven Ang, Shirlee-Ann Knight
Place of PublicationHobart
PublisherAssociation for Information Systems
Pages220-225
Number of pages6
ISBN (Print)9781864876948
Publication statusPublished - 2004
Externally publishedYes
EventFifteenth Australasian Conference on Information Systems: ACIS 2004 - Hobart, Hobart, Australia
Duration: 1 Dec 20043 Dec 2004

Conference

ConferenceFifteenth Australasian Conference on Information Systems
CountryAustralia
CityHobart
Period1/12/043/12/04

Fingerprint

Authentication
Chemical analysis
Information systems

Cite this

Campbell, J., & Bryant, K. (2004). Password composition and security: an exploratory study of user practice. In J. Ang, & S-A. Knight (Eds.), Proceedings of the fifteenth Australasian conference on Information Systems (pp. 220-225). Hobart: Association for Information Systems.
Campbell, John ; Bryant, Kay. / Password composition and security: an exploratory study of user practice. Proceedings of the fifteenth Australasian conference on Information Systems. editor / Javen Ang ; Shirlee-Ann Knight. Hobart : Association for Information Systems, 2004. pp. 220-225
@inproceedings{c5d4fb6eb1ad42a8b371a5f6f76e82b4,
title = "Password composition and security: an exploratory study of user practice",
abstract = "User authentication is a vital element in ensuring the secure operation of computer-based systems. The most common control mechanism for authenticating user access to computerised information systems is the use of passwords. Password-based systems remain the predominant method of user authentication despite the many sophisticated and viable security alternatives that have emerged from research and development. However, evidence suggests that this method is often compromised by poor security practices. This paper presents the results of a survey that examines user practice in creating and using password keys. This paper reports the findings from a pilot study examining user password composition and security practices for e-mail. Despite a greater awareness of security issues, the results show that an improvement in user password management practice is required",
author = "John Campbell and Kay Bryant",
year = "2004",
language = "English",
isbn = "9781864876948",
pages = "220--225",
editor = "Javen Ang and Shirlee-Ann Knight",
booktitle = "Proceedings of the fifteenth Australasian conference on Information Systems",
publisher = "Association for Information Systems",
address = "United States",

}

Campbell, J & Bryant, K 2004, Password composition and security: an exploratory study of user practice. in J Ang & S-A Knight (eds), Proceedings of the fifteenth Australasian conference on Information Systems. Association for Information Systems, Hobart, pp. 220-225, Fifteenth Australasian Conference on Information Systems, Hobart, Australia, 1/12/04.

Password composition and security: an exploratory study of user practice. / Campbell, John; Bryant, Kay.

Proceedings of the fifteenth Australasian conference on Information Systems. ed. / Javen Ang; Shirlee-Ann Knight. Hobart : Association for Information Systems, 2004. p. 220-225.

Research output: A Conference proceeding or a Chapter in BookConference contribution

TY - GEN

T1 - Password composition and security: an exploratory study of user practice

AU - Campbell, John

AU - Bryant, Kay

PY - 2004

Y1 - 2004

N2 - User authentication is a vital element in ensuring the secure operation of computer-based systems. The most common control mechanism for authenticating user access to computerised information systems is the use of passwords. Password-based systems remain the predominant method of user authentication despite the many sophisticated and viable security alternatives that have emerged from research and development. However, evidence suggests that this method is often compromised by poor security practices. This paper presents the results of a survey that examines user practice in creating and using password keys. This paper reports the findings from a pilot study examining user password composition and security practices for e-mail. Despite a greater awareness of security issues, the results show that an improvement in user password management practice is required

AB - User authentication is a vital element in ensuring the secure operation of computer-based systems. The most common control mechanism for authenticating user access to computerised information systems is the use of passwords. Password-based systems remain the predominant method of user authentication despite the many sophisticated and viable security alternatives that have emerged from research and development. However, evidence suggests that this method is often compromised by poor security practices. This paper presents the results of a survey that examines user practice in creating and using password keys. This paper reports the findings from a pilot study examining user password composition and security practices for e-mail. Despite a greater awareness of security issues, the results show that an improvement in user password management practice is required

M3 - Conference contribution

SN - 9781864876948

SP - 220

EP - 225

BT - Proceedings of the fifteenth Australasian conference on Information Systems

A2 - Ang, Javen

A2 - Knight, Shirlee-Ann

PB - Association for Information Systems

CY - Hobart

ER -

Campbell J, Bryant K. Password composition and security: an exploratory study of user practice. In Ang J, Knight S-A, editors, Proceedings of the fifteenth Australasian conference on Information Systems. Hobart: Association for Information Systems. 2004. p. 220-225