Enlighten Publications

In this section

GazeMeter: Exploring the Usage of Gaze Behaviour to Enhance Password Assessments

Abdrabou, Y., Shams, A., Mantawey, M., Khan, A. A., Khamis, M. , Alt, F. and Abdelrahman, Y. (2021) GazeMeter: Exploring the Usage of Gaze Behaviour to Enhance Password Assessments. In: 2021 Symposium on Eye Tracking Research and Applications, 24-27 May 2021, p. 9. ISBN 9781450383448 (doi: 10.1145/3448017.3457384)

Text
237539.pdf - Accepted Version
1MB

Abstract

We investigate the use of gaze behaviour as a means to assess password strength as perceived by users. We contribute to the effort of making users choose passwords that are robust against guessing-attacks. Our particular idea is to consider also the users’ understanding of password strength in security mechanisms. We demonstrate how eye tracking can enable this: by analysing people’s gaze behaviour during password creation, its strength can be determined. To demonstrate the feasibility of this approach, we present a proof of concept study (N = 15) in which we asked participants to create weak and strong passwords. Our findings reveal that it is possible to estimate password strength from gaze behaviour with an accuracy of 86% using Machine Learning. Thus, we enable research on novel interfaces that consider users’ understanding with the ultimate goal of making users choose stronger passwords.

Item Type:	Conference Proceedings
Status:	Published
Refereed:	Yes
Glasgow Author(s) Enlighten ID:	Khamis, Dr Mohamed
Authors:	Abdrabou, Y., Shams, A., Mantawey, M., Khan, A. A., Khamis, M., Alt, F., and Abdelrahman, Y.
College/School:	College of Science and Engineering > School of Computing Science
ISBN:	9781450383448
Copyright Holders:	Copyright © 2021 Association for Computing Machinery
First Published:	First published in ETRA '21 Full Papers; ACM Symposium on Eye Tracking Research and Applications: 9
Publisher Policy:	Reproduced in accordance with the publisher copyright policy
Related URLs:	Organisation

University Staff: Request a correction | Enlighten Editors: Update this record

Funder and Project Information

Project Code	Award No	Project Name	Principal Investigator	Funder's Name	Funder Ref	Lead Dept
309501		RSE Enterprise	Mohamed Khamis	The Royal Society of Edinburgh (ROYSOCED)	65040	Computing Science
310627		TAPS: Assessing, Mitigating and Raising Awareness of the Security and Privacy Risks of Thermal Imaging	Mohamed Khamis	Engineering and Physical Sciences Research Council (EPSRC)	EP/V008870/1	Computing Science

Deposit and Record Details

ID Code:	237539
Depositing User:	Mr Alastair Arthur
Datestamp:	26 Mar 2021 12:34
Last Modified:	03 Mar 2022 17:14
Date of acceptance:	15 March 2021
Date of first online publication:	25 May 2021
Date Deposited:	26 March 2021