Guidelines For Ethical Nudging in Password Authentication
dc.contributor.author
Renaud, Karen
dc.contributor.author
Zimmermann, Verena
dc.date.accessioned
2022-06-22T11:23:56Z
dc.date.available
2022-06-22T08:55:11Z
dc.date.available
2022-06-22T11:23:56Z
dc.date.issued
2018-06
dc.identifier.issn
1991-1696
dc.identifier.issn
0038-2221
dc.identifier.uri
http://hdl.handle.net/20.500.11850/553957
dc.identifier.doi
10.3929/ethz-b-000553957
dc.description.abstract
Nudging has been adopted by many disciplines in the last decade in order to achieve behavioural change. Information security is no exception. A number of attempts have been made to nudge end-users towards stronger passwords. Here we report on our deployment of an enriched nudge displayed to participants on the system enrolment page, when a password has to be chosen. The enriched nudge was successful in that participants chose significantly longer and stronger passwords. One thing that struck us as we designed and tested this nudge was that we were unable to find any nudge-specific ethical guidelines to inform our experimentation in this context. This led us to reflect on the ethical implications of nudge testing, specifically in the password authentication context. We mined the nudge literature and derived a number of core principles of ethical nudging. We tailored these to the password authentication context, and then show how they can be applied by assessing the ethics of our own nudge. We conclude with a set of preliminary guidelines derived from our study to inform other researchers planning to deploy nudge-related techniques in this context.
en_US
dc.format
application/pdf
en_US
dc.language.iso
en
en_US
dc.publisher
South African Institute of Electrical Engineers
en_US
dc.rights.uri
http://creativecommons.org/licenses/by-nd/4.0/
dc.subject
Nudge
en_US
dc.subject
Ethics
en_US
dc.subject
Autonomy
en_US
dc.title
Guidelines For Ethical Nudging in Password Authentication
en_US
dc.type
Journal Article
dc.rights.license
Creative Commons Attribution-NoDerivatives 4.0 International
ethz.journal.title
SAIEE Africa Research Journal
ethz.journal.volume
109
en_US
ethz.journal.issue
2
en_US
ethz.pages.start
102
en_US
ethz.pages.end
118
en_US
ethz.version.deposit
publishedVersion
en_US
ethz.publication.place
Johannesburg
en_US
ethz.publication.status
published
en_US
ethz.leitzahl
ETH Zürich::00002 - ETH Zürich::00012 - Lehre und Forschung::00007 - Departemente::02045 - Dep. Geistes-, Sozial- u. Staatswiss. / Dep. of Humanities, Social and Pol.Sc.
en_US
ethz.leitzahl
ETH Zürich::00002 - ETH Zürich::00012 - Lehre und Forschung::00007 - Departemente::02045 - Dep. Geistes-, Sozial- u. Staatswiss. / Dep. of Humanities, Social and Pol.Sc.::09775 - Zimmermann, Verena / Zimmermann, Verena
en_US
ethz.leitzahl.certified
ETH Zürich::00002 - ETH Zürich::00012 - Lehre und Forschung::00007 - Departemente::02045 - Dep. Geistes-, Sozial- u. Staatswiss. / Dep. of Humanities, Social and Pol.Sc.::09775 - Zimmermann, Verena / Zimmermann, Verena
en_US
ethz.identifier.url
http://www.scielo.org.za/scielo.php?script=sci_arttext&pid=S1991-16962018000200002&lng=en&nrm=iso
ethz.date.deposited
2022-06-22T08:55:16Z
ethz.source
BATCH
ethz.eth
no
en_US
ethz.availability
Open access
en_US
ethz.rosetta.installDate
2022-06-22T11:24:02Z
ethz.rosetta.lastUpdated
2023-02-07T03:42:20Z
ethz.rosetta.versionExported
true
ethz.COinS
ctx_ver=Z39.88-2004&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.atitle=Guidelines%20For%20Ethical%20Nudging%20in%20Password%20Authentication&rft.jtitle=SAIEE%20Africa%20Research%20Journal&rft.date=2018-06&rft.volume=109&rft.issue=2&rft.spage=102&rft.epage=118&rft.issn=1991-1696&0038-2221&rft.au=Renaud,%20Karen&Zimmermann,%20Verena&rft.genre=article&
Files in this item
Publication type
-
Journal Article [130815]