章骏: Fostering End-Users’ Secure Password Management Behaviors through Password Manager App Interventions——Two Field Experiments from a Dual-System Perspective
发布日期:2022-01-06  字号:   【打印

报告时间:2022年1月7日 (星期五) 14:00

报告地点:管理一号楼1111室

:章骏 博士

工作单位中国科学技术大学

举办单位:管理学院

报告简介

Internet users tend to adopt duplicated, easy-to-remember passwords for their online accounts. Paradoxically, although mobile password manager apps are widely available and can help users better manage their passwords, many users resist using automatically-generated random and strong passwords. In this study, drawing upon the dual-system theory, we identified two major reasons for users to adopt weak and duplicated passwords—limited cognitive capacity and their preexisting password reuse habit. Accordingly, we designed a set of interventions in a mobile password manager app to promote the use of complex, random, and unique passwords for users’ online accounts. With a self-developed password manager app, UXApp, we conducted two longitudinal field experiments to test the effectiveness of our proposed habit-breaking and habit-formation intervention designs. The results indicate that both just-in-time warning (as a habit-breaking feature) and visualized performance dashboard (as a habit-formation feature) can significantly improve users’ password management practices. In addition, just-in-time warning has an immediate treatment effect, which is relatively stable over time; in contrast, visualized performance dashboard has a non-immediate, accumulative treatment effect over time. We enrich the current password management research by investigating the longitudinal effects of habit-breaking and habit-formation interventions, and thus contribute to practice by improving Internet users’ password management practices.

报告人简介

Jun Zhang is currently an untenured associate professor in MIS at the Department of Management Science, School of Management, University of Science and Technology of China. He holds a Ph.D. in information systems from the City University of Hong Kong. His research areas include human-computer interactions, online deviant behaviors, information privacy and security, and IT-enabled health behavior change. His research has been published in leading IS journals and conferences such as Information Systems Research (ISR), Journal of Management Information Systems (JMIS), Information & Management (I&M), Information Technology & People (ITP), Computers in Human Behavior (CHB), ICIS, and PACIS. He serves as the primary investigator for two research projects granted by the National Natural Science Foundation of China (NSFC). He is currently an associate editor for Communication of the Association for Information Systems (CAIS), and has served as (guest) associated editors for EJIS, ICIS, PACIS, ECIS, etc.