Open access repository

Home Open access repository

In 2014, we launched our open-access repository which offers full text access to conference proceedings from many of our events including the INC and HAISA series. These papers are free to access and distribute (subject to citing the source).

» Openaccess proceedings » Tenth International Symposium on Human Aspects of Information Security & Assurance (HAISA 2016)

Tenth International Symposium on Human Aspects of Information Security & Assurance (HAISA 2016)

Tenth International Symposium on Human Aspects of Information Security & Assurance (HAISA 2016)
Frankfurt, Germany, July 19-21, 2016
ISBN: 978-1-84102-413-4

Title: Memorable and Secure: How Do You Choose Your PIN?
Author(s): Andreas Gutmann, Melanie Volkamer, Karen Renaud
Reference: pp156-166
Keywords: Authentication, PINs, PIN change, user advice
Abstract: Managing all your PINs is difficult. Banks acknowledge this by allowing and facilitating PIN changes. However, choosing secure PINs is a difficult task for humans as they are incapable of consciously generating randomness. This leads to certain PINs being chosen more frequently than others, which in turn increases the danger of someone else guessing correctly. We investigate different methods of supporting PIN changes and report on an evaluation of these methods in a study with 152 participants. Our contribution is twofold: We introduce an alternative to system-generated random PINs, which considers people’s preferred memorisation strategy, and, secondly, we provide indication that presenting guidance on how to avoid insecure PINs does indeed nudge people towards more secure PIN choices when they are in the process of changing their PINs.
Download count: 806

How to get this paper:

Download a free PDF copy of this paperBuy this book at Lulu.com

PDF copy of this paper is free to download. You may distribute this copy providing you cite this page as the source.