Vexing Validation Vectors: Password Creation Rules & Game Design thinking
At what point do frustrating password rules start becoming a problem for computer security ? Dr Roberto Dillon, Associate Professor at James Cook University in Singapore talks to us about learning from the player centred approach from computer game design and a multi-disciplinary study that looked to find an optimal point between frustrating users with password creation restrictions and the resulting password strength.
Audio is streamed directly from the publisher (cdn.simplecast.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
About out Guest:
https://research.jcu.edu.au/portfolio/roberto.dillon/
Papers Mentioned in this Episode
Dillon, R., Chawla, S., Hristova, D., Göbl, B., & Jovicic, S. (2020). Password Policies vs. Usability: When Do Users Go “Bananas”?. In 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom) (pp. 148-153). IEEE.
Grassi, P. A., Fenton, J. L., Newton, E. M., Perlner, R. A., Regenscheid, A. R., Burr, W. E., ... & Theofanos, M. F. (2017). Nist special publication 800-63b. digital identity guidelines: authentication and lifecycle management. Bericht, NIST.
https://pages.nist.gov/800-63-3/sp800-63b.html
Other:
Holiday from Rules? by Portafilms, part of the Prelinger archive available at archive.org.
https://archive.org/details/Holidayf1959