Common Nonsense about Password Security and the Expert-Layperson Knowledge Gap

29 Pages Posted: 1 Feb 2023

See all articles by Brett M. Frischmann

Brett M. Frischmann

Villanova University - Charles Widger School of Law

Alexandria Johnson

Duke University School of Law

Date Written: February 1, 2023

Abstract

Lay people often are misinformed about what is a secure password, what are the various types of security threats to passwords or password-protected resources, and the risks of certain compromising practices such as reusing passwords and required password expiration. Expert knowledge about password security has evolved considerably over time, but on many points, research supports general agreement among experts about best practices. Remarkably, though perhaps not surprisingly, there is a sizable gap between what experts agree on and what lay people believe and do. The knowledge gap might exist and persist because of intermediaries, namely professionals and practitioners as well as technological interfaces such as password meters and composition rules. In this chapter, we identify knowledge commons governance dilemmas that arise within and between different communities (expert, professional, lay) and examine implications for other everyday misinformation problems.

Keywords: password security, misinformation, disinformation, cybersecurity, common sense, knowledge, expertise, digtial, technology

Suggested Citation

Frischmann, Brett M. and Johnson, Alexandria, Common Nonsense about Password Security and the Expert-Layperson Knowledge Gap (February 1, 2023). Available at SSRN: https://ssrn.com/abstract=4345028 or http://dx.doi.org/10.2139/ssrn.4345028

Brett M. Frischmann (Contact Author)

Villanova University - Charles Widger School of Law ( email )

299 N. Spring Mill Road
Villanova, PA 19085
United States

Alexandria Johnson

Duke University School of Law ( email )

Do you have a job opening that you would like to promote on SSRN?

Paper statistics

Downloads
134
Abstract Views
577
Rank
421,748
PlumX Metrics