El evento de Diseño de Interacción y Experiencia de Usuario más

importante de Latinoamérica.

Biometrics from a UX perspectivePatricio Maller/Pablo Piccolotto

@PatricioMaller @pablopiccolotto

OUR RESEARCH

If you don’t know where you’re going, any road will get you there.“ ”

Define the experience

User modeling

• Proto-personas & Personas

• Marketing personas alignment

• Qualitative research₋ Structured

interviews₋ Market surveys

• Quantitative Research

• Storyboards• Experience

journey mapping• Visual design• Wireframing

Design

• Usability tests• Collaborative design• Paper-prototype tests• Structured Interviews

₋ Affective analysis₋ Kelly’s grid

• Non-verbal cues• Contextual observation• Human factors Lab Test

Probing

• Mood boards• Design principles• Key behaviors

OUR RESEARCH

Take care of the senses and the sounds will take care of themselves.“ ”

AUTHENTICATION

Physically

Behaviors

What you have

How you are

What you know

TokenBadge

PasswordPin

When she got to the door, she found she had forgotten the little golden key.“ ”

WHAT YOU HAVE

Key

Credit Card Badge

Phone

You're thinking about something, and it makes you forget to talk.“ ”

WHAT YOU KNOW

I give myself very good advice, but I very seldom follow it.

Shared

Trivial

Reused

Passwords

“ ”

In a recent study of 6 million user-generated passwords, the 10.000 most common ones accessed to 98.1% of all accounts.

The human brain struggles to retain more than seven numbers in short-term memory.

The average user has 26 password-protected accounts, but only 5 passwords.

WHAT YOU ARE/LOOK LIKE

Who in the world am I? Ah, that's the great puzzle.

Iris

Fingerprint Voice

Face

“ ”

Biometrics are not secrets

Biometric patterns are not revocable

HYPOTHESIS

Why, sometimes I've believed as many as six impossible things before breakfast.“ ”

H1: Perceptions about security of biometric methods are aligned with

objective data

H2: Password-based authentication is perceived as a secure option

H3: Less-known methods are perceived as less secure

H4: The more critical a password is, then the more probable for a user to

remember it

H1: PERCEIVED SECURITY

Ranking activity

70% got the ranking wrong

The more there is of mine, the less there is of yours.“ ”

H1: PERCEIVED SECURITY

H1: PERCEIVED SECURITY

LAB MEASURED SECURITYPrevious research has shown that iris recognition is the most secure method reaching 262X better rates than fingerprint recognition (the second factor in our list), followed by facial recognition, and then voice recognition.

H2: PASSWORDS

42% passwords weaker than biometrics

same results across tech literacy segments

Imagination is the only weapon in the war against reality.“ ”

H3: FAMILIARITY

Less known factors properly classified as more or less secure

“ You're thinking about something, and it makes you forget to talk.“ ”

H4: IMPORTANCE AND MEMORY

on-line banking password is both the most important, and most frequently forgotten

I can't go back to yesterday because I was a different person then.“ ”

H2.PASSWORDSH4: IMPORTANCE AND MEMORY

H2.PASSWORDSH4.IMPORTANCE AND MEMORY

FINDINGS

The more there is of mine, the less there is of yours.“ ”

ANTHROPOMORPHISM

Re-framing why some methods rank higher

INTRUSIVENESS

Authentication is, in general, an interruption

“RED LIGHT”

Behave!

FEAR AND PERCEPTION

Some methods seen as more vulnerable to threats, e.g. identity theft

FEAR AND PERCEPTION

FEAR AND PERCEPTION

DESIGN PRINCIPLES

“ ”“ ”Begin at the beginning, the King said, very gravely,

and go on till you come to the end: then stop.“ ”

SECURE & CONVENIENT

It is about ACCESS, not security

NON INVASIVE

Don’t put users on the spot

NOT TOO EASY

Desired friction

CONCLUSIONS

“ ”“ ”At any rate, there's no harm in trying.

Thank you!

“ ”“ ”“ ” ”Very poor speaker, said the King. You may go.“

MORE ABOUT OUR WORK

TECHNICAL DETAILS