Research Article
ByPass: Reconsidering the Usability of Password Managers
@INPROCEEDINGS{10.1007/978-3-030-63086-7_24, author={Elizabeth Stobert and Tina Safaie and Heather Molyneaux and Mohammad Mannan and Amr Youssef}, title={ByPass: Reconsidering the Usability of Password Managers}, proceedings={Security and Privacy in Communication Networks. 16th EAI International Conference, SecureComm 2020, Washington, DC, USA, October 21-23, 2020, Proceedings, Part I}, proceedings_a={SECURECOMM}, year={2020}, month={12}, keywords={Authentication Usable security Password manager API}, doi={10.1007/978-3-030-63086-7_24} }- Elizabeth Stobert
Tina Safaie
Heather Molyneaux
Mohammad Mannan
Amr Youssef
Year: 2020
ByPass: Reconsidering the Usability of Password Managers
SECURECOMM
Springer
DOI: 10.1007/978-3-030-63086-7_24
Abstract
Since passwords are an unavoidable mechanism for authenticating to online services, experts often recommend using a password manager for better password security. However, adoption of password managers is low due to poor usability, the difficulty of migrating accounts to a manager, and users’ sense that a manager will not add value. In this paper, we present ByPass, a novel password manager that is placed between the user and the website for secure and direct communication between the manager and websites. This direct communication allows ByPass to minimize the users’ actions needed to complete various password management tasks, including account registration, logins, and password changes. ByPass is designed to minimize errors and improve usability. We conducted a usability evaluation of ByPass and found that this approach shows promising usability, and can help users to better manage their accounts in a secure manner.
