An Empirical Study of User Practice in Password Security and Management

No Thumbnail Available
File version
Author(s)
Bryant, Kay
Campbell, John
Griffith University Author(s)
Primary Supervisor
Other Supervisors
Editor(s)

Campbell, Bruce

Underwood, Jim

Bunker, Deborah

Date
2005
Size
File type(s)
Location

Sydney

License
Abstract

Maintaining the security of information systems and associated data resources is vital if an organisation is to minimise losses. Access controls are the first line of defence in this process. The primary function of access controls is to restrict the use of information systems and resources to authorised users. Password-based systems remain the predominant method of user authentication despite the many sophisticated and viable security alternatives that have emerged from research and development. However, evidence suggests that passwords as a means of authentication is often compromised by poor security practices. This paper presents the results of a survey that examines user practice in creating and using password keys and reports the findings on user password composition and security practices for e-mail accounts. Despite a greater awareness of security issues, the results show that an improvement in user password management practice is required.

Journal Title
Conference Title

Proceedings of the 16th Australasian Conference on Information Systems (ACIS 2005)

Book Title
Edition
Volume
Issue
Thesis Type
Degree Program
School
Publisher link
DOI
Patent number
Funder(s)
Grant identifier(s)
Rights Statement
Rights Statement
Item Access Status
Note
Access the data
Related item(s)
Subject
Persistent link to this record
Citation