Description
User-to-machine authentication plays an essential role in ensuring the primary security
goals of a system. It has been shown that adequate security measures must feel reasonable
and usable to users. This work aims to provide a framework to effectively asses the
usability and user acceptance of authentication factors in Operational Technology (OT).
It describes users’ perception of security measures and perceived usability. From this
understanding, a testbed is conceptualized, implemented, and evaluated.
The proposed testbed enables experiments in an OT environment while collecting
metrics about the usability of the used authentication factors. Passwords, RFID cards,
TOTPs, and facial recognition are implemented. The work introduces a holistic concept
of usability testing and complements it with essential considerations for testing usability
in OT. These considerations include Personal Protective Equipment (PPE) and another
safety aspect, a time criticality of actions, and equipment age.
|
Thesis topic in co-operation with the Fraunhofer Institute for Applied and Integrated Security AISEC, Garching