Quantifying Usability and Security in Authentication

Substantial research has been conducted in developing sophisticated security methods with authentication mechanisms placed in the front line of defense. Since these mechanisms are based on user conduct, they may not accomplish the intended objectives with improper use. Despite the influence of usability, little research has been focused on the balance between usability and security in authentication mechanisms when evaluating the effectiveness of these systems. In this paper we present a quantification approach for assessing usable security in authentication mechanisms. The purpose of this approach is to guide the evaluation process of authentication mechanisms in a given environment by balancing usability and security and defining quantifiable quality criteria.