Privacy Enhancing Keyboard: Design, Implementation, And Usability Testing

Creator

Zhen Ling, Southeast University
Melanie Borgeest, State University of New York Albany
Chuta Sano, University of Massachusetts Lowell
Jazmyn Fuller, University of New York
Anthony Cuomo, Quinnipiac University

Abstract

To protect users from numerous password inference attacks, we invent a novel context aware privacy enhancing keyboard (PEK) for Android touch-based devices. Usually PEK would show a QWERTY keyboard when users input text like an email or a message. Nevertheless, whenever users enter a password in the input box on his or her touch-enabled device, a keyboard will be shown to them with the positions of the characters shuffled at random. PEK has been released on the Google Play since 2014. However, the number of installations has not lived up to our expectation. For the purpose of usable security and privacy, we designed a two-stage usability test and performed two rounds of iterative usability testing in 2016 and 2017 summer with continuous improvements of PEK. The observations from the usability testing are educational: (1) convenience plays a critical role when users select an input method; (2) people think those attacks that PEK prevents are remote from them.

Publication Date

1-1-2017

Publication Title

Wireless Communications and Mobile Computing

Volume

2017

Document Type

Article

Personal Identifier

scopus

DOI Link

https://doi.org/10.1155/2017/3928261

Copyright Status

Unknown

Socpus ID

85042618865 (Scopus)

Source API URL

https://api.elsevier.com/content/abstract/scopus_id/85042618865

STARS Citation

Ling, Zhen; Borgeest, Melanie; Sano, Chuta; Fuller, Jazmyn; and Cuomo, Anthony, "Privacy Enhancing Keyboard: Design, Implementation, And Usability Testing" (2017). Scopus Export 2015-2019. 5066.
https://stars.library.ucf.edu/scopus2015/5066