Work detail

Careless society: Drivers of (un)secure passwords

Author: Mgr. Vojtěch Nedvěd
Year: 2021 - summer
Leaders: doc. PhDr. Jozef Baruník Ph.D.
Consultants:
Work type: Finance, Financial Markets and Banking
Masters
Language: English
Pages: 255
Awards and prizes:
Link: https://ckis.cuni.cz:443/F/?func=direct&doc_number=002449011&local_base=CKS01&format=999
Abstract: Vulnerabilities related to poor cybersecurity are a dangerous global economic issue. This
thesis aims to explain two examples of poor password management. First, why users use similar
password and username and second, why they reuse their passwords, as the main drivers of this
behaviour are unknown. We examined the effects of selected macroeconomic variables, gender,
password length and password complexity. Additionally, this thesis suggest how to estimate
sentiment in passwords using models build on Twitter posts. The results are verified on large
password data, including password leaks from recent years. There are four main findings. First, a
higher cybersecurity index and diversity of a password seem to be related to the lower similarity
between a username and a password. Second, it seems that there are structural differences
between countries and languages. Third, the sentiment seems to be a significant determinant
too. Fourth, password reuse seems to be positively affected by the cybersecurity level. The thesis
contributes to the study of password management. It proposes how to model the relationship,
derive the data, split the passwords into words, model the sentiment of passwords, what variables
might be used and how the results might contribute to better password policies.

Partners

Deloitte

Sponsors

CRIF
McKinsey
Patria Finance