THE DEVELOPMENT OF AN EVALUATION MODEL FOR USER AUTHENTICATION METHODS WITH SECURITY, USABILITY, AND USAGE FREQUENCY
Ussatova O. Makilenov S. Karyukin V. Razaque A. Amanzholova S. Begimbayeva Y.
2025Technology Center
Eastern-European Journal of Enterprise Technologies
2025#3Issue 217 - 29 pp.
The object of the study is authentication systems in security-critical environments, especially in healthcare. The addressed problem is the absence of comprehensive frameworks that integrate both threat data and user-centric factors for real-world method comparison. This study develops and validates a novel evaluation model for assessing the empirical effectiveness of user authentication methods. The proposed model integrates probabilistic threat modeling, usability data, and weighted multi-criteria analysis to generate context-sensitive effectiveness scores, thereby supporting informed decision-making. Twelve authentication methods were assessed using three criteria: security (resistance to cyber threats), usability (user convenience), and use frequency (real-world adoption). Security coefficients (K2) were computed from threat statistics, while usability and adoption metrics were based on a healthcare survey (n = 70). Weighted normalization (ws = 0.4, wu = 0.3, wf = 0.3) produced overall effectiveness scores (E). The most effective methods were mobile devices (E = 30.915), PIN codes (E = 30.252), and fingerprint authentication (E = 29.235), offering an optimal balance of security and acceptance. Graphical passwords (E = 6.132) and iris scans (E = 7.245) scored lowest due to poor usability and limited adoption. The model’s feature lies in its holistic integration of threat exposure and empirical user data, along with adaptability to organizational requirements and visual interpret-ability. This feature distinguishes it from single-dimensional or static assessment models. Copyright
authentication , biometrics , cybersecurity , effectiveness , evaluation , risks , security , threats , tokens , usability
Text of the article Перейти на текст статьи
Department of Information Security, Institute of Information and Computational Technologies, Shevchenko str., 28, Almaty, 050010, Kazakhstan
Department of Cybersecurity, International IT University, Manas str., 34/1, Almaty, 050000, Kazakhstan
Department of Intellectual Systems and Cyber Security, Astana IT university, EXPO Business Center, Mangilik El ave., 55/11, Block C1, Astana, 010000, Kazakhstan
Department of Cybersecurity, Almaty University of Power Engineering and Telecommunications (AUPET), Baytursynov str., 126/1, Almaty, 050013, Kazakhstan
Department of Information Systems, Al-Farabi Kazakh National University, Al-Farabi ave., 71, Almaty, 050040, Kazakhstan
Department of Information Security
Department of Cybersecurity
Department of Intellectual Systems and Cyber Security
Department of Cybersecurity
Department of Information Systems
10 лет помогаем публиковать статьи Международный издатель
Книга Публикация научной статьи Волощук 2026 Book Publication of a scientific article 2026