U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

PUBLICATIONS

“Passwords Protect My Stuff” – a Study of Children’s Password Practices

Published

Author(s)

Yee-Yin Choong, Mary F. Theofanos, Karen Renaud, Suzanne Prior

Abstract

Children use technology from a very young age, and often have to authenticate. The goal of this study is to explore children’s practices, perceptions, and knowledge regarding passwords. Given the limited work to date and that the world’s cyber posture and culture will be dependent on today’s youth, it is imperative to conduct cyber-security research with children. We conducted surveys of 189 3rd to 8th graders from two Midwest schools in the United States (US). We found that children have on average 2 passwords for school and 3 to 4 passwords for home. They kept their passwords private and didn’t share with others. They created passwords with an average length of 7 (3rd to 5th graders) and 10 (6th to 8th graders). But, only about 13% of the children created very strong passwords. Generating strong passwords requires mature cognitive and linguistic capabilities which children at this developmental stage have not yet mastered. They believed that passwords provide access control, protect their privacy and keep their “stuff” safe. Overall, children had appropriate mental models of passwords and demonstrated good password practices. Cyber-security education should strive to reinforce these positive practices while continuing to provide and promote age-appropriate developmental security skills. Given the study’s sample size and limited generalizability, we are expanding our research to include children from 3rd to 12th graders across multiple US school districts.
Citation
Journal of Cybersecurity
Pub Type
Journals

Keywords

Children, Passwords, Authentication, Perceptions, Password practices
Usability and human factors, Information technology and Cybersecurity education and workforce development

Citation

Choong, Y. , Theofanos, M. , Renaud, K. and Prior, S. (2020), “Passwords Protect My Stuff” – a Study of Children’s Password Practices, Journal of Cybersecurity (Accessed April 25, 2024)

Created March 10, 2020