Two-factor authentication time: How time-efficiency and time-satisfaction are associated with perceived security and satisfaction

KRUŽÍKOVÁ, Agáta, Michal MUŽÍK, Lenka KNAPOVÁ, Lenka DĚDKOVÁ, David ŠMAHEL and Václav MATYÁŠ. Two-factor authentication time: How time-efficiency and time-satisfaction are associated with perceived security and satisfaction. Computers & Security. 2024, vol. 138, No 103667, p. 1-11. ISSN 0167-4048. Available from: https://dx.doi.org/10.1016/j.cose.2023.103667.

Basic information

• Original name: Two-factor authentication time: How time-efficiency and time-satisfaction are associated with perceived security and satisfaction
• Authors: KRUŽÍKOVÁ, Agáta (203 Czech Republic, belonging to the institution), Michal MUŽÍK (203 Czech Republic, belonging to the institution), Lenka KNAPOVÁ (203 Czech Republic, belonging to the institution), Lenka DĚDKOVÁ (203 Czech Republic, belonging to the institution), David ŠMAHEL (203 Czech Republic, belonging to the institution) and Václav MATYÁŠ (203 Czech Republic, guarantor, belonging to the institution).
• Edition: Computers & Security, 2024, 0167-4048.

Other information

• Original language: English
• Type of outcome: Article in a journal
• Field of Study: 10201 Computer sciences, information science, bioinformatics
• Country of publisher: United Kingdom of Great Britain and Northern Ireland
• Confidentiality degree: is not subject to a state or trade secret
• WWW: URL
• Impact factor: Impact factor: 5.600 in 2022
• Organization unit: Faculty of Informatics
• Doi: http://dx.doi.org/10.1016/j.cose.2023.103667
• UT WoS: 001142782500001
• Keywords in English: authentication; efficiency; satisfaction; security; usability; usable security
• Tags: International impact, Reviewed

Abstract

Usability is a crucial aspect that increases the willingness to adopt more demanding two-factor authentication (2FA) methods. There is little knowledge about the role of efficiency (i.e., task completion time) in the perception of 2FA. This paper aims to understand how objective and subjective efficiency influence the usability and security perception of two token-based authentication methods. We conducted a user study with 337 smartphone users aged 26-81. Participants worked with two token-based authentication methods: a near-field communication (NFC) token and a payment card with a card reader. Path analysis showed that task completion time is predicted by age, gender, and the length of smartphone and e-banking use. Participants who were satisfied with application aesthetics were also satisfied with the time it took them to complete the tasks. For the NFC token, men were more satisfied with their task completion time. In the case of the card reader, participants who were more satisfied with their efficiency were also more satisfied with the method and perceived it as more secure. Our results indicate that satisfaction with the time spent on the authentication task is more important for a positive perception of the authentication methods than the objective completion time. Despite the potential time consumption of the 2FA methods, users might be satisfied with the methods in terms of usability and security, especially for highly valued accounts.

Links

• TL01000207, research and development project: Name: Inovace a adaptace autentizačních technologií pro bezpečné digitální prostředí

Investor: Technology Agency of the Czech Republic, Innovation and adaptation of authentication technologies for secure digital environment