Why do passwords place a heavy load on human memory?

1. Porter SN (1982) A password extension for improved human factors. Computers & Security 1: 54–56. [Google Scholar]

2. Armstrong L (2002) And the password is… #%?@&! Business Week. 3785: 89. [Google Scholar]

3. Harada Y, Kuroki K (1996) A study on the attitude and behavior of computer network users regarding security administration. Reports of National Research Institute of Police Science 37: 21–33. [Google Scholar]

4. Horowitz AS (2001) Top 10 security mistakes. Computerworld 35: 38. [Google Scholar]

5. Morris R, Thompson K (1979) Password security: A case history. Communications of the ACM 22: 594–597. [Google Scholar]

6. Zviran M, Haga WJ (1993) A Comparison of Password Techniques for Multilevel Authentication Mechanisms. The Computer Journal 36: 227–237. [Google Scholar]

7. Brown SC, Craik F (2000) Encoding and retrieval of information. In Tulving E, Craik F, editors. The oxford handbook of memory. New York: Oxford University Press US. pp. 93–107.

8. Craik FIM, Lockhart RS (1972) Levels of processing: a framework for memory research. Journal of Verbal Learning and Verbal Behavior 11: 671–684. [Google Scholar]

9. Brainerd CJ, Reyna VF (2002) Fuzzy-trace theory and false memory. Current Directions in Psychological Science 11: 164–169. [Google Scholar]

10. Reyna VF, Brainerd CJ (1995) Fuzzy-trace theory - an interim synthesis. Learning And Individual Differences 7: 1–75. [Google Scholar]

11. Gardiner JM, Java RI (1991) Forgetting in recognition memory with and without recollective experience. Memory & Cognition 19: 617–623. [PubMed] [Google Scholar]

12. Zhang J, Luo X, Akkaladevi S, Ziegelmayer J (2009) Improving multiple-password recall: an empirical study. European Journal of Information Systems 18: 165–176. [Google Scholar]

13. Dempster FN, Brainerd CJ (1995) Interference and inhibition in cognition. San Diego, CA: Academmic Press.

14. Brown AS, Bracken E, Zoccoli S, Douglas K (2004) Generating and remembering passwords. Applied Cognitive Psychology 18: 641–651. [Google Scholar]

15. Adams A, Sasse MA (1999) Users are not the enemy. Communications of the ACM 42: 41–46. [Google Scholar]

16. Carstens D, McCauley-Bell P, Malone L, DeMara R (2004) Evaluation of the human impact of password authentication practices on information security. Informing Science Journal 7: 67–85. [Google Scholar]

17. Zviran M, Haga WJ (1999) Password security: An empirical study. Journal of Management Information Systems 15: 161–185. [Google Scholar]

18. Hoonakker P, Bornoe N, Carayon P (2009) Password authentication from a human factor perspective: results of a survey among end-users. Proceedings of the Human Factors and Ergonomics Society 53rd Annual Meeting.

19. Charoen D, Raman M, Olfman L (2008) Improving end user behaviour in password utilization: an action research initiative. Systemic Practice and Action Research 21: 55–72. [Google Scholar]

20. Craik FIM (1994) Memory changes in normal aging. Current Directions in Psychological Science 3: 155–158. [Google Scholar]

21. Park DC, Lautenschlager G, Hedden T, Davidson NS, Smith AD, et al. (2002) Models of visuospacial and verbal memory across the adult lifespan. Psychology and Aging 17: 299–320. [PubMed] [Google Scholar]

22. Grady CL, Craik FIM (2000) Changes in memory processing with age. Current Opinion in Neurobiology 10: 224–231. [PubMed] [Google Scholar]

23. Old SR, Naveh-Benjamin M (2008) Differential effects of aging on item and associative measures of memory: A meta-analysis. Psychology and Aging 23: 104–118. [PubMed] [Google Scholar]

24. Colsher PL, Wallace RB (1991) Longitudinal application of cognitive function measures in a defined population of community-dwelling elders. Annals of Epidemiology 1: 215–230. [PubMed] [Google Scholar]

25. Evans DA, Beckett LA, Albert MS, Hebert LE, Scherr PA, et al. (1993) Level of education and change in cognitive function in a community population of older persons. Annals of Epidemiology 3: 71–77. [PubMed] [Google Scholar]

26. Leibovici D, Ritchie K, Ledésert B, Touchon J (1996) Does the educational level determine the course of cognitive decline? Age and Ageing 25: 392–397. [PubMed] [Google Scholar]

27. Alley D, Suthers K, Crimmins E (2007) Education and cognitive decline in older americans: Results from the AHEAD sample. Research on Aging 29: 73–94. [PMC free article] [PubMed] [Google Scholar]

28. Barros RJ, Lee JW (2010) A new data set of educational attainment in the world, 1950–2010. The National Bureau of Economic Research, 15902.

29. Nyberg L, Backman L, Erngrund K, Olofsson U, Nilsson LG (1996) Age differences in episodic memory, semantic memory, and priming: relationships to demographic, intellectual, and biological factors. Journal of Gerontology: Psychological Series 4: 234–240. [PubMed] [Google Scholar]

30. Papalia DE, Olds SW, Feldman RD (2004) Human development. New York: McGraw Hill.

31. Dobbs AR, Rule BG (1989) Adult age differences in working memory. Psychology and Aging 4: 500–503. [PubMed] [Google Scholar]

32. Ericsson KA, Kintsch W (1995) Long-term working memory. Psychological Review 102: 211–245. [PubMed] [Google Scholar]

33. Adams A, Sasse MA, Lunt P (1997) Making passwords secure and usable. In Thimbleby H, O’Conaill, B, Thomas P, editors. People & computers xii (proceedings of hci’97). UK: Springer. pp. 1–19.

34. Yan J, Blackwell A, Anderson R, Grant A (2004) Password memorability and security: Empirical results. Security & Privacy 1: 25–31. [Google Scholar]

35. Nelson D, Vu KPL (2010) Effectiveness of image-based mnemonic techniques for enhancing the memorability and security of user-generated passwords. Computers in Human Behavior 26: 705–715. [Google Scholar]

Page 2

Number of participants by age and education.