Abstract
Institutions often require or recommend that their employees use secure, system-generated passwords. It is not clear how well linguistic and phonological language properties map onto complex, randomly-generated passwords. Passwords containing a mix of letters, numbers, and other symbol characters may or may not be similar to common patterns in spoken or written English. The Linguistic Phonological Difficulty (LPD) scoring rubric was created by considering the extent to which a string of characters in a password resembles ordinary spoken or written language patterns. LPD is a score calculated through a six-rule process that considers these spoken and written patterns of English as well as memory load. These rules can be applied to any password. Our research explores mapping linguistic and phonological language properties onto complex randomly generated passwords to assess behavioral performance.
The rights of this work are transferred to the extent transferable according to title 17 U.S.C. 105.
Chapter PDF
Similar content being viewed by others
References
Zviran, M., Haga, W.J.: Password Security: An Empirical Study. Journal of Management Information Systems 15(4), 161–184 (1999)
Keith, M., Shao, B., Steinbart, P.J.: The Usability of Passphrases for Authentication: An Empirical Field Study. International Journal of Human-Computer Studies 65, 17–28 (2007)
Vu, K.L., Proctor, R.W., Bhargav-Spantzel, A., Tai, B., Cook, J., Schultz, E.E.: Improving Password Security and Memorability to Protect Personal and Organizational Informa-tion. International Journal of Human-Computer Studies 65, 744–757 (2007)
Craik, F.I.M., Lockhart, R.S.: Levels of Processing: A Framework for Memory Re-search. Journal of Verbal Learning and Verbal Behavior 11, 671–684 (1971)
Gasser, M.: A Random Word Generator for Pronounceable Passwords. Mitre Corporation Report MTR-3006 (1975)
Bonneau, J.: Linguistic Properties of Multi-Word Passphrases. In: USEC Workshop on Useable Security, Kralendijk, Bonaire, Netherlands (2012)
Bonneau, J.: The Science of Guessing: Analyzing an Anonymized Corpus of 70 Million Passwords. In: IEEE Symposium on Security and Privacy (2012)
Greene, K.K., Gallagher, M.A., Stanton, B.C., Lee, P.Y.I.: Can’t Type That! P@$$w0rd Entry on Mobile Devices. In: Proceedings of the Human Computer Interaction International Conference, Crete, Greece (2014)
Gobet, F., Lane, P.C.R., Croker, S., Cheng, P.C.-H., Jones, G., Oliver, I., Pine, J.M.: Chunking Mechanisms in Human Learning. Trends in Cognitive Science 5, 236–243 (2001)
Pierrehumbert, J.B.: The Phonetics and Phonology of English Intonation. Unpublished Ph.D. dissertation. MIT (1980)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2014 Springer International Publishing Switzerland
About this paper
Cite this paper
Bergstrom, J.R. et al. (2014). Development of a Scale to Assess the Linguistic and Phonological Difficulty of Passwords. In: Rau, P.L.P. (eds) Cross-Cultural Design. CCD 2014. Lecture Notes in Computer Science, vol 8528. Springer, Cham. https://doi.org/10.1007/978-3-319-07308-8_13
Download citation
DOI: https://doi.org/10.1007/978-3-319-07308-8_13
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-07307-1
Online ISBN: 978-3-319-07308-8
eBook Packages: Computer ScienceComputer Science (R0)