Effect of Two-Factor Authentication On Users' Trust in Their Passwords

Poster Number

4

Session Title

Poster Session 1

College

College of Business Administration

Department

Computer Science & Quantitative Methods

Abstract

This paper covers how Two-Factor Authentication (2FA) affects users' trust in their password-making decision. The 2011 study, Using Fingerprint Authentication to Reduce System Security: An Empirical Study By Wimberly and Liebrock, found that users created weaker passwords secured with a fingerprint scanner. The goal of this paper is to see if the passage of time and the innovation of Two-Factor Authentication methods have changed this result. We do this by conducting a study that examines the strength of passwords between two conditional groups: Treatment (QR code 2FA) and Control Group (password-only). We employ non-parametric statistics and Mann-Whitney U tests to measure the strength of passwords for both conditional groups. Our results conclude that Two-Factor Authentication has no significant difference in the strength of passwords.

Start Date

15-4-2022 12:00 PM

This document is currently not available here.

Share

COinS
 
Apr 15th, 12:00 PM

Effect of Two-Factor Authentication On Users' Trust in Their Passwords

This paper covers how Two-Factor Authentication (2FA) affects users' trust in their password-making decision. The 2011 study, Using Fingerprint Authentication to Reduce System Security: An Empirical Study By Wimberly and Liebrock, found that users created weaker passwords secured with a fingerprint scanner. The goal of this paper is to see if the passage of time and the innovation of Two-Factor Authentication methods have changed this result. We do this by conducting a study that examines the strength of passwords between two conditional groups: Treatment (QR code 2FA) and Control Group (password-only). We employ non-parametric statistics and Mann-Whitney U tests to measure the strength of passwords for both conditional groups. Our results conclude that Two-Factor Authentication has no significant difference in the strength of passwords.