Please use this identifier to cite or link to this item:
Title: Johnny in Internet café: User study and exploration of password autocomplete in web browsers
Authors: Bıçakcı, Kemal
Atalay, N. B.
Kızılöz H. E.
Keywords: Passwords
Usable security
User study
Issue Date: 2011
Source: 7th ACM Workshop on Digital Identity Management, DIM'11 - Co-located with 18th ACM Conference on Computer and Communications Security, CCS 2011, 21 October 2011 through 21 October 2011, Chicago, IL, 87239
Abstract: One of the most popular aids adopted by users to reduce the pain suffered from the use of passwords is browsers' autocomplete feature. This feature, caching username and password after getting the user consent and using them later for automatic completion, is available in all modern browsers but communication with the user asking consent is implemented in different ways. In this paper, we report on user studies comparing active communication with a blocking dialog box and passive communication with a non-intrusive toolbar. We found that a dialog box misled users to save passwords in public computers. Conversely, no security problem was observed with passive communication. Our exploration provides empirical evidence for the risks of preferring active communication for password autocomplete and other similar interactions and sheds light on many other aspects of password autocomplete. © 2011 ACM.
ISBN: 9781450310062
ISSN: 1543-7221
Appears in Collections:Bilgisayar Mühendisliği Bölümü / Department of Computer Engineering
Scopus İndeksli Yayınlar Koleksiyonu / Scopus Indexed Publications Collection

Show full item record

CORE Recommender


checked on Sep 23, 2022

Page view(s)

checked on Dec 26, 2022

Google ScholarTM



Items in GCRIS Repository are protected by copyright, with all rights reserved, unless otherwise indicated.