Password Sharing and How to Reduce It

Ferreira, Ana; Correia, Ricardo; Chadwick, David; Santos, Henrique; Gomes, Rui; Reis, Diogo; Antunes, Luís

doi:10.4018/978-1-4666-2919-6.ch002

Cited by 6 publications

(3 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Previous literature in IS and complementary fields has commented on the importance of addressing these domains of information security (Crossler et al, 2013;Ferreira et al, 2013;Stanton et al, 2005;Takabi et al, 2010;Vishwanath et al, 2011;Wright & Marett, 2010;Zviran & Haga, 1999). We also used this as the basis for focusing on training that revolved around these three threats.…”

Section: Action Research At Caregivermentioning

confidence: 99%

Optimizing Vaccine Delivery with Drones for Hard-to-Reach Regions

Campbell,

Enayati,

Kara

et al. 2024

Proceedings of the Annual Hawaii International Conference on System Sciences

View full text Add to dashboard Cite

This study uses action research methods at a large US healthcare facility. Based on self-regulation theory, we created a new security education training and awareness (SETA) program that is focused on three threats: phishing, unauthorized use of cloud services, and password sharing. The new SETA program was shown to be more effective than the existing SETA program. Findings also indicate that the training was effective at helping users to identify and avoid all three threats to the environment. Future research directions based on this study are also discussed.

show abstract

Section: Action Research At Caregivermentioning

confidence: 99%

Optimizing Vaccine Delivery with Drones for Hard-to-Reach Regions

Campbell,

Enayati,

Kara

et al. 2024

Proceedings of the Annual Hawaii International Conference on System Sciences

View full text Add to dashboard Cite

show abstract

“…Dropbox instead of proprietary encrypted one), and password sharing. Not surprisingly, previous literature in IS and complementary fields has commented on the importance of addressing these domains of information security (Crossler et al, 2013;Ferreira et al, 2013;Stanton et al, 2005;Takabi et al, 2010;Vishwanath et al, 2011;Wright & Marett, 2010;Zviran & Haga, 1999).…”

Section: Phase One: Assessmentmentioning

confidence: 99%

Detecting and Rectifying the Non-Malicious Insider Threat in a Healthcare Setting

Zafar

2022

International Journal of Systems and Software Security and Protection

View full text Add to dashboard Cite

This paper aims to apply habit-based research to the domain of information security. It proposes a new training paradigm in which a user “automatically” does the right thing without being an expert in the area of information security. The authors used a multiphased approach in which a new security training program was created and assessed for three groups: administrators (mostly managers), medical professionals (included physicians, physician assistants etc.) and staff (appointment coordinators, billing specialists etc.). The authors were able to find strong correlations between habit creation and security threats such as phishing, unauthorized cloud computing use, and password sharing. The authors were also able to ascertain that traditional security training and awareness programs need to move away from the “one-size” fits all technique to custom models that need to look at employee groups. This study supports the idea of training programs that are focused on changing habits, which is an area that has not yet been extensively researched in this context.

show abstract

“…A well-known limitation of passwords is their capacity to be shared (or the inability to do so securely). For example, typical advice discourages users from sharing passwords, as this can compromise the security of their accounts [13]. However, prior work has shown that passwords are commonly shared due to need [41], convenience [38], or for social credit [11].…”

Section: Protecting Digital Datamentioning

confidence: 99%

From Personal Data to Digital Legacy: Exploring Conflicts in the Sharing, Security and Privacy of Post-mortem Data

Holt

Nicholson

Smeddinck

2021

Proceedings of the Web Conference 2021

View full text Add to dashboard Cite

As digital technologies become more prevalent there is a growing awareness of the importance of good security and privacy practices. The tools and techniques used to achieve this are typically designed with the living user in mind, with little consideration of how they should or will perform after the user has died. We report on two workshops carried out with users of password managers to explore their views on the post-mortem sharing, security and privacy of a range of common digital assets. We discuss a post-mortem privacy paradox where users recognise value in planning for their digital legacy, yet avoid actively doing so. Importantly, our findings highlight a tension between the use of recommended security tools during life and facilitating appropriate post-mortem access to chosen assets. We offer design recommendations to facilitate and encourage digital legacy planning while promoting good security habits during life. CCS CONCEPTS• Security and privacy → Social aspects of security and privacy; Privacy protections; Usability in security and privacy; • Human-centered computing → Human computer interaction (HCI); Social content sharing.

show abstract

Password Sharing and How to Reduce It

Cited by 6 publications

References 13 publications

Optimizing Vaccine Delivery with Drones for Hard-to-Reach Regions

Optimizing Vaccine Delivery with Drones for Hard-to-Reach Regions

Detecting and Rectifying the Non-Malicious Insider Threat in a Healthcare Setting

From Personal Data to Digital Legacy: Exploring Conflicts in the Sharing, Security and Privacy of Post-mortem Data

Contact Info

Product

Resources

About