Two-factor authentication time: How time-efficiency and time-satisfaction are associated with perceived security and satisfaction

Kód výsledku v IS VaVaI

<a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F00216224%3A14330%2F24%3A00135301" target="_blank" >RIV/00216224:14330/24:00135301 - isvavai.cz</a>

Výsledek na webu

<a href="https://doi.org/10.1016/j.cose.2023.103667" target="_blank" >https://doi.org/10.1016/j.cose.2023.103667</a>

DOI - Digital Object Identifier

<a href="http://dx.doi.org/10.1016/j.cose.2023.103667" target="_blank" >10.1016/j.cose.2023.103667</a>

Jazyk výsledku

angličtina

Název v původním jazyce

Two-factor authentication time: How time-efficiency and time-satisfaction are associated with perceived security and satisfaction

Popis výsledku v původním jazyce

Usability is a crucial aspect that increases the willingness to adopt more demanding two-factor authentication (2FA) methods. There is little knowledge about the role of efficiency (i.e., task completion time) in the perception of 2FA. This paper aims to understand how objective and subjective efficiency influence the usability and security perception of two token-based authentication methods. We conducted a user study with 337 smartphone users aged 26-81. Participants worked with two token-based authentication methods: a near-field communication (NFC) token and a payment card with a card reader. Path analysis showed that task completion time is predicted by age, gender, and the length of smartphone and e-banking use. Participants who were satisfied with application aesthetics were also satisfied with the time it took them to complete the tasks. For the NFC token, men were more satisfied with their task completion time. In the case of the card reader, participants who were more satisfied with their efficiency were also more satisfied with the method and perceived it as more secure. Our results indicate that satisfaction with the time spent on the authentication task is more important for a positive perception of the authentication methods than the objective completion time. Despite the potential time consumption of the 2FA methods, users might be satisfied with the methods in terms of usability and security, especially for highly valued accounts.

Název v anglickém jazyce

Two-factor authentication time: How time-efficiency and time-satisfaction are associated with perceived security and satisfaction

Popis výsledku anglicky

Usability is a crucial aspect that increases the willingness to adopt more demanding two-factor authentication (2FA) methods. There is little knowledge about the role of efficiency (i.e., task completion time) in the perception of 2FA. This paper aims to understand how objective and subjective efficiency influence the usability and security perception of two token-based authentication methods. We conducted a user study with 337 smartphone users aged 26-81. Participants worked with two token-based authentication methods: a near-field communication (NFC) token and a payment card with a card reader. Path analysis showed that task completion time is predicted by age, gender, and the length of smartphone and e-banking use. Participants who were satisfied with application aesthetics were also satisfied with the time it took them to complete the tasks. For the NFC token, men were more satisfied with their task completion time. In the case of the card reader, participants who were more satisfied with their efficiency were also more satisfied with the method and perceived it as more secure. Our results indicate that satisfaction with the time spent on the authentication task is more important for a positive perception of the authentication methods than the objective completion time. Despite the potential time consumption of the 2FA methods, users might be satisfied with the methods in terms of usability and security, especially for highly valued accounts.

Druh

J_imp - Článek v periodiku v databázi Web of Science

CEP obor

—

OECD FORD obor

10201 - Computer sciences, information science, bioinformathics (hardware development to be 2.2, social aspect to be 5.8)

Projekt

<a href="/cs/project/TL01000207" target="_blank" >TL01000207: Inovace a adaptace autentizačních technologií pro bezpečné digitální prostředí</a><br>

Návaznosti

P - Projekt vyzkumu a vyvoje financovany z verejnych zdroju (s odkazem do CEP)

Rok uplatnění

2024

Kód důvěrnosti údajů

S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů

Název periodika

Computers & Security

ISSN

0167-4048

e-ISSN

—

Svazek periodika

138

Číslo periodika v rámci svazku

103667

Stát vydavatele periodika

GB - Spojené království Velké Británie a Severního Irska

Počet stran výsledku

11

Strana od-do

1-11

Kód UT WoS článku

001142782500001

EID výsledku v databázi Scopus

2-s2.0-85180607758