An Exploratory Investigation Into the Use of eAUP as an Alternative to Text-based Passwords (original) (raw)
Related papers
Usability Study on Textual and Graphical Passwords
Proceedings of the Nigerian Academy of Science
One of the most common methods used for authentication are passwords, in particular textual passwords. However, maintaining multiple textual passwords across various websites or information systems could be an overwhelming task especially when it comes to memorability. An alternative is Graphical passwords as pictures could be easier to recollect. Pictures on the other hand could be memory intensive. As a result, this research explores the use of graphical and textual passwords by integrating the strong points of both password scheme thereby providing stronger authentication platform that may be difficult for attackers to break. The use of a background image for memorability and security purpose was adopted in the implementation of the graphical scheme. A usability experiment was carried out with users from diverse background. The users were given the developed system that integrates the two password applications to use. A questionnaire was then administered to enable them share the...
A New Graphical Password: Combination of Recall & Recognition based approach
Information Security is the most describing problem in present times. To cop up with the security of the information, the passwords were introduced. The alphanumeric passwords are the most popular authentication method and still used up to now. However, text based passwords suffer from various drawbacks such as they are easy to crack through dictionary attacks, brute force attacks, keylogger, social engineering etc. Graphical Password is a good replacement for text password. Psychological studies say that human can remember pictures better than text. So this is the fact that graphical passwords are easy to remember. But at the same time due to this reason most of the graphical passwords are prone to shoulder surfing. In this paper, we have suggested a shoulder-surfing resistant graphical password authentication method. The system is a combination of recognition and pure recall based techniques. Proposed scheme can be useful for smart hand held devices (like smart phones i.e. PDAs, iPod, iPhone, etc) which are more handy and convenient to use than traditional desktop computer systems.
Authentication Using Graphical Passwords: Basic Results
Access to computer systems is most often based on the use of alphanumeric passwords. However, users have difficulty remembering a password that is long and random-appearing. Instead, they create short, simple, and insecure passwords. Graphical passwords have been designed to try to make passwords more memorable and easier for people to use and, therefore, more secure. Using a graphical password, users click on images rather than type alphanumeric characters. We have designed a new and more secure graphical password system, called PassPoints. In this paper we describe the PassPoints system, its security characteristics, and the empirical study we carried out comparing PassPoints to alphanumeric passwords. In the empirical study participants learned either an alphanumeric or graphical password and subsequently carried out three longitudinal trials to input their passwords over a period of five weeks. The results show that the graphical group took longer and made more errors in learning the password, but that the difference was largely a consequence of just a few graphical participants who had difficulty learning to use graphical passwords. In the longitudinal trials the two groups performed similarly on memory of their password, but the graphical group took more time to input a password.
A Graphical Password Based System for Small Mobile Devices
2011
Passwords provide security mechanism for authentication and protection services against unwanted access to resources. A graphical based password is one promising alternatives of textual passwords. According to human psychology, humans are able to remember pictures easily. In this paper, we have proposed a new hybrid graphical password based system, which is a combination of recognition and recall based techniques that offers many advantages over the existing systems and may be more convenient for the user. Our scheme is resistant to shoulder surfing attack and many other attacks on graphical passwords. This scheme is proposed for smart mobile devices (like smart phones i.e. ipod, iphone, PDAs etc) which are more handy and convenient to use than traditional desktop computer systems.
IRJET, 2021
Authentication is the process that verifies the identity of a user or method(process). Authentication can be performed using alphanumeric passwords and graphical passwords. Alphanumeric passwords contains both letters and numbers as well as special characters whereas graphical passwords consists of an image used as a password. Mobile devices like smartphones and tablets are widely wont to perform security critical and privacy sensitive activities like mobile banking, mobile health care, mobile shopping, etc. Screen locks are utilized in mobile devices to guard sensitive information. Graphical password and alphanumeric password are two common sorts of screen locking methods. The alphanumeric password scheme has shown some downside in terms of security and usability. For example, a user may pick a simple to recollect alphanumeric password which will even be easy to guess. On the contrary, if as user picks a password that's hard to guess it's going to even be hard to recollect. Several alternative password mechanisms have been introduced. Graphical password is one among them, and it's supported pictures or patterns. However, graphical password is also vulnerable to certain types of security breaches and malware attacks. This study mostly takes a note of user's preferences and their behaviour towards these two methods .This is an comparative study of graphical password method i.e. pattern and alphanumeric password method i.e. PIN(Personal Identification Number) in terms of security, performance, usability and retention.
GPASS: A Graphical Password Scheme using alphanumeric characters and pictures
Authentication is very important for secure use of any computerized system. Textual password is serving to authentication since long time, but it is vulnerable to different kinds of attacks. To make authentication process more secure and easy to memorize, graphical password authentication has been introduced. This approach solved most of the problems present in textual passwords. However shoulder surfing attack is common in graphical password schemes. Anyone monitoring the process of login, through camera or some kind of recording software can recognize the password easily. To overcome this issue researchers developed different graphical password schemes but most of them suffer from usability and memorability issues. Therefore a graphical password scheme is required, which is resistant to shoulder surfing and similar attacks along with better usability and memorability. In this paper a combined textual and graphical password scheme (GPASS) is proposed with its implementation and usability results. In the GPASS scheme users select password by clicking on a group of four password elements which help to improve the authentication process. Security analysis of GPASS scheme is also presented along with comparison of other recognition based graphical password schemes.
Enhanced Textual Password Scheme for Better Security and Memorability
International Journal of Advanced Computer Science and Applications
Traditional textual password scheme provides a large number of password combinations but users generally use a small portion of available password space. Complex textual passwords are difficult to remember, therefore most users choose passwords with small length and contain dictionary words. Due to the use of small password length and dictionary words, textual passwords become easy to crack through offline guessability attacks. Traditional textual passwords scheme is also weak against keystroke logger attacks because alphanumeric characters are directly inserted into the password field. In this paper, enhancements are proposed in the registration and login screen of the traditional textual password scheme for improving security against offline guessability attacks and keystroke logger attacks. The proposed registration screen also improve memorability of traditional textual passwords through visual cues or patternbased approach. In the proposed login screen, passwords are indirectly inserted into the password field, to resist keystroke logger attacks. A comparative analysis between the passwords created in traditional and proposed pattern-based approach is presented. The testing results show that users create strong and high entropy passwords in the proposed pattern-based approach as compared to the traditional textual passwords approach.
International Journal
have related security issues with usability. Secured systems must be usable to maintain intended security. Password Authentication Systems have either been usable and not secure, or secure and not usable. Increasing either tends to complicate the other. Text passwords are widely used but suffer from poor usability, reducing its security. Graphical Passwords, while usable, does not seem to have the security necessary to replace text passwords. Attempts using text or graphics only have mixed results. A combination password is proposed as a potential solution to the problem. This paper explores combination as a means of solving this password problem. We implemented three password systems: Text only, Graphics only and a Combination of Text and Graphics. Remote evaluations were conducted with 105 computer science students. Results from our evaluations, though not conclusive, suggest promise for combination passwords.
A Novel approach on Graphical Password Authentication
2015
Computer security depends largely on passwords to authenticate human users. However, users have difficulty remembering passwords over time if they choose a secure password, i.e., a password that is long and random. Therefore, they tend to create short and insecure passwords. Graphical passwords, which consist of clicking on pictures rather than typing alphanumeric strings, may help to overcome the problem of secure and memorable passwords. An important usability goal for knowledge-based authentication systems is to support users in selecting passwords of higher security, in the sense of being from an expanded effective security space. We use persuasion to influence user choice in click-based graphical passwords, encouraging users to select more random, and hence more difficult to guess, click-points.
A Novel Hybrid Password Authentication Scheme Based on Text and Image
Lecture Notes in Computer Science, 2018
Considering the popularity and wide deployment of text passwords, we predict that they will be used as a prevalent authentication mechanism for many years to come. Thus, we have carried out studies on mechanisms to enhance text passwords. These studies suggest that password space and memorability should be improved, with an additional mechanism based on images. The combination of text and images increases resistance to some password attacks, such as brute force and observing attacks. We propose a hybrid authentication scheme integrating text and recognition-based graphical passwords. This authentication scheme can reduce the phishing attacks because if users are deceived to share their key passwords, there is still a chance to save the complete password as attackers do not know the users' image preferences. In addition to the security aspect, the proposed authentication scheme increases memorability as it does not require users to remember long and complex passwords. Thus, with the proposed scheme users will be able to create strong passwords without sacrificing usability. The hybrid scheme also offers an enjoyable sign-in/log-in experience to users.