At http://cups.cs.cmu.edu/soups/2008/program.html, there was an interesting paper on this: look for "Personal knowledge questions for fallback authentication" on the page. It highlights many problems with the security questions, but also offers some solutions. It does not really contain a checklist of good questions, but it shows examples of what definitely NOT to do. E.g questions about spouses and vacation homes are inapplicable to people who aren't married or don't have a vacation home.
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Posted from the new ixda.org http://www.ixda.org/discuss?post=36577 ________________________________________________________________ Welcome to the Interaction Design Association (IxDA)! To post to this list ....... [email protected] Unsubscribe ................ http://www.ixda.org/unsubscribe List Guidelines ............ http://www.ixda.org/guidelines List Help .................. http://www.ixda.org/help
