Frequently Using Passwords Increases Their Memorability - A False Assumption or Reality?

Abstract

Password memorability is a significant problem that is getting worse as the numbers grow. As a direct result of memory limitations, adopted insecure password practices have substantial consequences as organizations lose millions to security breaches and helpdesk costs. IS research has examined memory theories to increase the memorability of passwords. However, in our research we have discovered some anomalous findings. It is commonly known that more frequently and recently recalled information is more easily remembered (assumed for password recall also); our previously collected objective data revealed no effect on password recall. This study will strive to confirm whether or not password memorability is affected by the frequency of password use and the time between use. If this study confirms our previous results, then this suggests that future IS research should look to other factors to increase password memorability and security, than just directly applying memory theories to the password problem.