Using and managing multiple passwords: a week to a view

Beate Grawemeyer, Hilary Johnson

Research output: Contribution to journalArticlepeer-review

60 Citations (Scopus)
161 Downloads (Pure)

Abstract

Security policies are required that protect information from unauthorised access, and also respect challenges users face in creating, and particularly managing, increasing numbers of passwords. This paper investigates real password use in the context of daily life. It presents the results of an empirical study where participants completed a password diary over 7 days, followed by debrief interviews to gain further knowledge and understanding of user behaviour. The results reported relate to how many passwords are in use, the types of passwords participants created, the relationships between different passwords and to sensitive services, how participants retrieved their passwords and finally, the different strategies adopted by users in their management of passwords. The paper concludes by providing a high level set of password guidelines, along with suggestions for mechanisms to support creating, encoding, retrieving and executing multiple passwords.
Original languageEnglish
Pages (from-to)256-267
Number of pages12
JournalInteracting with Computers
Volume23
Issue number3
Early online date12 Apr 2011
DOIs
Publication statusPublished - May 2011

Cite this