CHI-WEB Archives

ACM SIGCHI WWW Human Factors (Open Discussion)

CHI-WEB@LISTSERV.ACM.ORG

Options: Use Forum View

Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
From:
Phil Barrett <[log in to unmask]>
Reply To:
Phil Barrett <[log in to unmask]>
Date:
Fri, 8 Aug 2003 18:03:15 +0100
Content-Type:
text/plain
Parts/Attachments:
text/plain (36 lines)
Hi, all.

Imagine you're running a website which requires users to log in using a
username and password for access to particular services.

Analysing your web server stats will show how many failed login attempts per
week you are getting. And improving the login process will reduce the number
of failed attempts. The kinds of things that would help:
- Improving general page clarity
- Providing password reminders
- using e-mail address for username (harder to forget)
- thinking carefully about case sensitivity
- etc.

How low can you expect the failure rate to drop? to 0%?

Won't there always be some attempts where people mis-type/forget/bungle in
some way? And one failed attempt will usually be followed by several
retries, which may also fail, exaggerating the effect on the weekly failure
stats?

In some ways it's a daft question. But setting targets can be a useful way
to help some businesses. What should the target failure rate for a web login
page be?

I'll summarise -- since that seems to be the done thing.

--Phil Barrett--

    --------------------------------------------------------------
    Tip of the Day: Quote only what you need from earlier postings
     CHI-WEB: www.sigchi.org/web POSTINGS: mailto:[log in to unmask]
              MODERATORS: mailto:[log in to unmask]
       SUBSCRIPTION CHANGES & FAQ:  www.sigchi.org/web/faq.html
    --------------------------------------------------------------

ATOM RSS1 RSS2