Exploring implicit memory for painless password recovery

T. Denning, K. Bowers, M. Van Dijk, A. Juels

Research output: Chapter in Book / Report / Conference proceedingConference contributionAcademicpeer-review

Abstract

Knowledge-based authentication systems generally rely upon users' explicit recollection of passwords, facts, or personal preferences. These systems impose a cognitive burden that often results in forgotten secrets or secrets with poor entropy. We propose an authentication system that instead draws on implicit memory-that is, the unconscious encoding and usage of information. In such a system, a user is initially presented with images of common objects in a casual familiarization task. When the user later authenticates, she is asked to perform a task involving a set of degraded images, some of which are based upon the images in the familiarization task. The prior exposure to those images influences the user's responses in the task, thereby eliciting authentication information. We ran a user study to investigate the plausibility of our system design. Our results suggest that implicit memory has potential as a basis for low-cognitive-overhead, high-stability, knowledge-based authentication. Copyright 2011 ACM.
Original languageEnglish
Title of host publicationCHI 2011 - 29th Annual CHI Conference on Human Factors in Computing Systems, Conference Proceedings and Extended Abstracts
PublisherAssociation for Computing Machinery
Pages2615-2618
ISBN (Print)9781450302289
DOIs
Publication statusPublished - 2011
Externally publishedYes

Fingerprint

Dive into the research topics of 'Exploring implicit memory for painless password recovery'. Together they form a unique fingerprint.

Cite this