Introducing Survey++ : an extensible platform for testing the usability and security of credential recovery mechanisms
<p>Mainstream authentication procedures have usually relied on knowledge factors for determining whether to allow a user access to resources. Typically, a user is challenged to provide a token that they know to prove that they are authorised. In the case that this token (password, passphrase,...
| Main Authors: | , |
|---|---|
| Format: | Working paper |
| Language: | English |
| Published: |
Centre for Doctoral Training in Cyber Security
2014
|
| Subjects: |
| _version_ | 1797072527148711936 |
|---|---|
| author | Taylor, V Flechais, I |
| author_facet | Taylor, V Flechais, I |
| author_sort | Taylor, V |
| collection | OXFORD |
| description | <p>Mainstream authentication procedures have usually relied on knowledge factors for determining whether to allow a user access to resources. Typically, a user is challenged to provide a token that they know to prove that they are authorised. In the case that this token (password, passphrase, personal identification number, etc.) is forgotten, the usual approach has been to provide password hints or password reset questions during credential recovery to help ensure a user is who they claim to be before allowing them to reset the token. Survey++ is a platform designed to test the usability and security of credential recovery mechanisms. Survey++ was built to test a credential recovery mechanism that reminds a user of their password by showing them characters from the password, but it can be easily extended to test other recovery mechanisms or authentication procedures.</p> |
| first_indexed | 2024-03-06T23:08:59Z |
| format | Working paper |
| id | oxford-uuid:64d33f34-2966-48ac-a1ce-303c33e48a54 |
| institution | University of Oxford |
| language | English |
| last_indexed | 2024-03-06T23:08:59Z |
| publishDate | 2014 |
| publisher | Centre for Doctoral Training in Cyber Security |
| record_format | dspace |
| spelling | oxford-uuid:64d33f34-2966-48ac-a1ce-303c33e48a542022-03-26T18:21:22ZIntroducing Survey++ : an extensible platform for testing the usability and security of credential recovery mechanismsWorking paperhttp://purl.org/coar/resource_type/c_8042uuid:64d33f34-2966-48ac-a1ce-303c33e48a54ComputingComputer securityCyber SecurityEnglishOxford University Research Archive - ValetCentre for Doctoral Training in Cyber Security2014Taylor, VFlechais, I<p>Mainstream authentication procedures have usually relied on knowledge factors for determining whether to allow a user access to resources. Typically, a user is challenged to provide a token that they know to prove that they are authorised. In the case that this token (password, passphrase, personal identification number, etc.) is forgotten, the usual approach has been to provide password hints or password reset questions during credential recovery to help ensure a user is who they claim to be before allowing them to reset the token. Survey++ is a platform designed to test the usability and security of credential recovery mechanisms. Survey++ was built to test a credential recovery mechanism that reminds a user of their password by showing them characters from the password, but it can be easily extended to test other recovery mechanisms or authentication procedures.</p> |
| spellingShingle | Computing Computer security Cyber Security Taylor, V Flechais, I Introducing Survey++ : an extensible platform for testing the usability and security of credential recovery mechanisms |
| title | Introducing Survey++ : an extensible platform for testing the usability and security of credential recovery mechanisms |
| title_full | Introducing Survey++ : an extensible platform for testing the usability and security of credential recovery mechanisms |
| title_fullStr | Introducing Survey++ : an extensible platform for testing the usability and security of credential recovery mechanisms |
| title_full_unstemmed | Introducing Survey++ : an extensible platform for testing the usability and security of credential recovery mechanisms |
| title_short | Introducing Survey++ : an extensible platform for testing the usability and security of credential recovery mechanisms |
| title_sort | introducing survey an extensible platform for testing the usability and security of credential recovery mechanisms |
| topic | Computing Computer security Cyber Security |
| work_keys_str_mv | AT taylorv introducingsurveyanextensibleplatformfortestingtheusabilityandsecurityofcredentialrecoverymechanisms AT flechaisi introducingsurveyanextensibleplatformfortestingtheusabilityandsecurityofcredentialrecoverymechanisms |