Accessible authentication: dyslexia and password strategies

Renaud, Karen; Johnson, Graham I.; Ophoff, Jacques

doi:10.1108/ics-11-2020-0192

Cited by 5 publications

(6 citation statements)

References 27 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The majority stem from usability issues -such as compatibility problems with assistive technologies (P7), lack of contrast on the smartphone keyboards (P12, P13), non-readable password fields (P1, P10), or solving CAPTCHAs in the enrolment or authentication process (P5, P8, P9) -that have also been identified by other research, e.g., [20], [61]. These also have an effect on security, e.g., similar to people with dyslexia [22], [39], [52], [57] P1, with learning difficulties, finds it hard to create and remember secure passwords, so they reduce the length of the passwords and choose family names or a date of birth as a password to be able to memorize it easily. Such adaptations commonly come at the cost of security, as shown in P1's experience:…”

Section: Lack Of Accessible Authentication Forces Users With Disabili...mentioning

confidence: 87%

“…Cognitive Impairments. Recently, researchers started to look more closely at the needs of people with cognitive impairments, such as dyslexia [22], [32], [39], [52], [57]. Hayes et al [32], Renaud et al [57], and Ophoff et al [52] found that difficulties occur in entering passwords, memorizing patterns, PINs, tokens, and identifying objects in pictures (CAPTCHAs).…”

Section: Disability and Authenticationmentioning

confidence: 99%

“…Recently, researchers started to look more closely at the needs of people with cognitive impairments, such as dyslexia [22], [32], [39], [52], [57]. Hayes et al [32], Renaud et al [57], and Ophoff et al [52] found that difficulties occur in entering passwords, memorizing patterns, PINs, tokens, and identifying objects in pictures (CAPTCHAs). Participants help themselves with password managers that are fast and easy to use, as they automatically achieve the requirements of passwords, such as minimum length or upper and lower case.…”

Section: Disability and Authenticationmentioning

confidence: 99%

See 2 more Smart Citations

“As Usual, I Needed Assistance of a Seeing Person”: Experiences and Challenges of People with Disabilities and Authentication Methods

Erinola,

Buckmann,

Friedauer

et al. 2023

2023 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)

View full text Add to dashboard Cite

According to the World Health Organization, about 16% of the world's population live with a disability. While they could benefit from digital products and services, users with disabilities often face severe accessibility issues: tasks can only be completed with difficulty, a considerable investment of time, or with assistance of technologies or other people. Further, to access these products and services, they need to authenticate. The accessibility of authentication methods for users with disabilities has not been studied in depth. We use an accessible study design to conduct 13 semistructured interviews with people with physical, hearing, visual, cognitive, or multiple impairments to better understand the accessibility issues they face when using knowledge-or token-based, and biometric authentication. Our qualitative content analysis shows that none of the commonly available authentication methods is fully accessible to participants, causing them to abandon services or develop workarounds that reduce their own security and privacy. Our results also reveal the role of assistive technologies and human assistants in the authentication experience of users with disabilities. We conclude by encouraging fellow researchers and practitioners to reflect on assisted access when designing security mechanisms, to include people with disabilities using accessible study designs, and to keep in mind that accessible security is about more than usability -to further benefit users without disabilities as well.

show abstract

Section: Lack Of Accessible Authentication Forces Users With Disabili...mentioning

confidence: 87%

Section: Disability and Authenticationmentioning

confidence: 99%

Section: Disability and Authenticationmentioning

confidence: 99%

See 1 more Smart Citation

“As Usual, I Needed Assistance of a Seeing Person”: Experiences and Challenges of People with Disabilities and Authentication Methods

Erinola,

Buckmann,

Friedauer

et al. 2023

2023 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)

View full text Add to dashboard Cite

show abstract

“…Many older adults experience a measure of cognitive decline [ 56 ]. For example, dyslexia impacts at least 10% of the population, and impacts cyber security behaviours [ 54 , 76 ]. Users with other limitations, such as those with Down syndrome, need more time than other users to carry out tasks [ 52 ].…”

Section: Accessibility and Vulnerabilitymentioning

confidence: 99%

“…This option requires the user to read and correctly transfer the number to the device they are logging in on. These codes expire within seconds/minutes so even a slight delay caused by age-related slowness might invalidate them, which will eventually lock the user out of their account [ 76 ]. (2) approval of a login attempt via a 2FA app .…”

Section: Barriers To Accessible Cyber Guidancementioning

confidence: 99%

Accessible and Inclusive Cyber Security: A Nuanced and Complex Challenge

Renaud

Coles-Kemp

2022

SN COMPUT. SCI.

Self Cite

View full text Add to dashboard Cite

It has been argued that human-centred security design needs to accommodate the considerations of three dimensions: (1) security, (2) usability and (3) accessibility. The latter has not yet received much attention. Now that governments and health services are increasingly requiring their citizens/patients to use online services, the need for accessible security and privacy has become far more pressing. The reality is that, for many, security measures are often exasperatingly inaccessible. Regardless of the outcome of the debate about the social acceptability of compelling people to access public services online, we still need to design accessibility into these systems, or risk excluding and marginalising swathes of the population who cannot use these systems in the same way as abled users. These users are particularly vulnerable to attack and online deception not only because security and privacy controls are inaccessible but also because they often struggle with depleted resources and capabilities together with less social, economic and political resilience. This conceptual paper contemplates the accessible dimension of human-centred security and its impact on the inclusivity of security technologies. We scope the range of vulnerabilities that can result from a lack of accessibility in security solutions and contemplate the nuances and complex challenges inherent in making security accessible. We conclude by suggesting a number of avenues for future work in this space.

show abstract

Accessible password strength assessment method for visually challenged users

Kuppusamy,

Balayogi

2023

Int. J. Inf. Secur.

View full text Add to dashboard Cite

Accessible authentication: dyslexia and password strategies

Cited by 5 publications

References 27 publications

“As Usual, I Needed Assistance of a Seeing Person”: Experiences and Challenges of People with Disabilities and Authentication Methods

“As Usual, I Needed Assistance of a Seeing Person”: Experiences and Challenges of People with Disabilities and Authentication Methods

Accessible and Inclusive Cyber Security: A Nuanced and Complex Challenge

Accessible password strength assessment method for visually challenged users

Contact Info

Product

Resources

About