TY - JOUR
T1 - Passwords and the evolution of imperfect authentication
AU - Bonneau, Joseph
AU - Herley, Cormac
AU - Van Oorschot, Paul C.
AU - Stajano, Frank
PY - 2015/7/1
Y1 - 2015/7/1
N2 - Experts share their on the theory on passwords has lagged practice where large providers use back-end smarts to survive with imperfect technology. Extensive published research has focused on specific aspects of the problem that can be easily formalized but do not actually have a major influence on real-world design goals. The focus of published research on clean, well-defined problems has caused the neglect of the complications of real-world Web authentication. This misplaced focus continues to hinder the applicability of password research to practice. Failure to recognize the broad range of usability, deployability, and security challenges in Web authentication has produced a several mutually incompatible password requirements for users and extensive attempts by researchers to find a solution have failed, despite different requirements in different applications.
AB - Experts share their on the theory on passwords has lagged practice where large providers use back-end smarts to survive with imperfect technology. Extensive published research has focused on specific aspects of the problem that can be easily formalized but do not actually have a major influence on real-world design goals. The focus of published research on clean, well-defined problems has caused the neglect of the complications of real-world Web authentication. This misplaced focus continues to hinder the applicability of password research to practice. Failure to recognize the broad range of usability, deployability, and security challenges in Web authentication has produced a several mutually incompatible password requirements for users and extensive attempts by researchers to find a solution have failed, despite different requirements in different applications.
UR - http://www.scopus.com/inward/record.url?scp=84934758795&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84934758795&partnerID=8YFLogxK
U2 - 10.1145/2699390
DO - 10.1145/2699390
M3 - Article
AN - SCOPUS:84934758795
SN - 0001-0782
VL - 58
SP - 78
EP - 87
JO - Communications of the ACM
JF - Communications of the ACM
IS - 7
ER -