URIA

uria-logo-teaser_1.jpg

Research project at a glance

The research project URIA inspects the widely deployed password-based authentication. Nearly everyone knows the difficulty of choosing and, especially, remembering good passwords. Password-secured systems also inhere high security risks due to its fast "crackability". Hence, password-based authentication has weaknesses in terms of usability as well as security. In contrast to that, Risk-based authentication has the potential of improving security without degrading usability.
uria-logo-teaser_1.jpg

Departments and Instituts

Period

01.04.2018 to 31.08.2021

Website

Project manager at H-BRS

Project Description

The research project URIA inspects the widely deployed password-based authentication. Nearly everyone knows the difficulty of choosing and, especially, remembering good passwords. Password-secured systems also inhere high security risks due to its fast "crackability". Hence, password-based authentication has weaknesses in terms of usability as well as security. In contrast to that, Risk-based authentication has the potential of improving security without degrading usability.

Publications

2021 | 2020 | 2019

2021

Stephan Wiefling, Jan Tolsdorf, Luigi Lo Iacono: Privacy Considerations for Risk-Based Authentication Systems.
PDF Download (CC BY 4.0) doi:10.1109/EuroSPW54576.2021.00040 urn:nbn:de:hbz:1044-opus-58417 BibTeX | RIS

Stephan Wiefling, Markus Dürmuth, Luigi Lo Iacono: Verify It's You: How Users Perceive Risk-based Authentication.
PDF Download (postprint version) doi:10.1109/MSEC.2021.3077954 urn:nbn:de:hbz:1044-opus-54912 BibTeX | RIS

Stephan Wiefling, Markus Dürmuth, Luigi Lo Iacono: What's in Score for Website Users: A Data-driven Long-term Study on Risk-based Authentication Characteristics.
PDF Download (pre-proceedings version) URL arXiv urn:nbn:de:hbz:1044-opus-53053 BibTeX | RIS

2020

Stephan Wiefling, Markus Dürmuth, Luigi Lo Iacono: More Than Just Good Passwords? A Study on Usability and Security Perceptions of Risk-based Authentication.
PDF Download (postprint version) doi:10.1145/3427228.3427243 URL arXiv urn:nbn:de:hbz:1044-opus-50707 BibTeX | RIS

Stephan Wiefling, Tanvi Patil, Markus Dürmuth, Luigi Lo Iacono: Evaluation of Risk-based Re-Authentication Methods.
PDF Download (postprint version) urn:nbn:de:hbz:1044-opus-49521 URL doi:10.1007/978-3-030-58201-2_19 arXiv BibTeX | RIS

Stephan Wiefling: Usability, Sicherheit und Privatsphäre von risikobasierter Authentifizierung.
doi:10.18420/sicherheit2020_12 BibTeX | RIS

2019

Stephan Wiefling, Luigi Lo Iacono, Markus Dürmuth: Is This Really You? An Empirical Study on Risk-Based Authentication Applied in the Wild.
doi:10.1007/978-3-030-22312-0_10 URL arXiv BibTeX | RIS

Stephan Wiefling, Nils Gruschka, Luigi Lo Iacono: Even Turing Should Sometimes Not Be Able To Tell: Mimicking Humanoid Usage Behavior for Exploratory Studies of Online Services.
doi:10.1007/978-3-030-35055-0_12 URL BibTeX | RIS