References related to cognitive impairments and authentication

I promised in coga call to provide references that highlight the issues of single versus multifactor authentication. I started with general population preferences that showed (in one paper) " participants were willing to use an authentication method that takes more time to complete in order to increase security in collaborative settings, i.e. they felt less secure using single-factor authentication based on possession only" (Brun et al,  2014) which is not what is generally felt when discussing the subject.

Ma et al (2013) highlight extended times being taken with login and password systems when working with those who have Intellectual Disabilities (ID).

" After generating a password that meets all the requirements (normally with assistance), we observed students with ID frequently face challenges with recalling it. Many students struggled to remember and correctly type mixed case passwords, even when written down."
" All researchers noted that it was common for students with ID to become visibly frustrated while performing online activities involving meta-skills"

A later paper confirms "challenges [for young adults with intellectual disabilities] related to keyboard performance, confusion during online navigation tasks, and frustrations with failed authentication."(Buehler et al, 2016)

Anecdotally coga task force experts on today's call felt that a more complex authentication, such as having to check an SMS or go through a number of processes would further increase the time spent on the task and increase frustration levels or failure.

Hopefully others may have found more papers to confirm these findings in multifactor authentication situations for those with cognitive impairments.

Best wishes

Mrs E.A. Draffan
WAIS, ECS , University of Southampton
Mobile +44 (0)7976 289103<>
UK AAATE rep<>

Received on Thursday, 30 November 2017 20:05:12 UTC