Dampak Model Mental Pengguna terhadap Implementasi Multi-Factor Authentication untuk Mitigasi Risiko Password Guessing di Konteks Organisasi

This study conducts a Systematic Literature Review (SLR) to explore the impact of users’ mental models on the implementation of Multi-Factor Authentication (MFA) as a strategy for mitigating password guessing risks in organizational environments. Amid the growing landscape of cyber threats, single-factor authentication has proven to be vulnerable, making MFA an essential layered security solution. However, the adoption of MFA remains slow. Existing studies indicate that expert users perceive MFA as a useful additional layer of verification, whereas non-expert users often view it as a burdensome task (a chore) and may even struggle to distinguish between different types of MFA. Dependence on mobile devices emerges as a common source of frustration for both groups. These findings emphasize that understanding users’ mental models is crucial for improving the implementation and usability of MFA. Innovations such as adaptive MFA or Single Input Multi-Factor Authentication (SIMFA) show potential as solutions to balance security requirements and user experience.