Scribd
Upload
27 views2 pages

Password Scheme Strongly Resistant To Spyware

Graphical passwords allow users to authenticate by clicking on images or areas of the screen rather than entering text passwords. They aim to be more secure and easier for humans to remember and enter quickly. Several schemes were tested, including clicking on specific icons in a grid, clicking a sequence of pictures in a grid, and selecting faces from a 3x3 grid. While graphical passwords can be more memorable for users, studies found that users do not always pick strong, hard to guess passwords and may be susceptible to shoulder surfing attacks. Education is needed to help users select more secure graphical passwords.

Uploaded by

jisskuruvilla
Copyright
© Attribution Non-Commercial (BY-NC)
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOC, PDF, TXT or read online on Scribd
27 views2 pages

Password Scheme Strongly Resistant To Spyware

Graphical passwords allow users to authenticate by clicking on images or areas of the screen rather than entering text passwords. They aim to be more secure and easier for humans to remember and enter quickly. Several schemes were tested, including clicking on specific icons in a grid, clicking a sequence of pictures in a grid, and selecting faces from a 3x3 grid. While graphical passwords can be more memorable for users, studies found that users do not always pick strong, hard to guess passwords and may be susceptible to shoulder surfing attacks. Education is needed to help users select more secure graphical passwords.

Uploaded by

jisskuruvilla
Copyright
© Attribution Non-Commercial (BY-NC)
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOC, PDF, TXT or read online on Scribd
You are on page 1/ 2

Graphical Passwords 4/13/06 Scribe Notes Definition of Graphical Password: - Password inputted with the help of graphical input

Password Problem: - Should be easy to remember - Should be easily and quickly input by humans - Should be secure Graphical passwords allow users to click on certain areas of the screen that are then converted by the computer to be used for authentications. Test Password Vulnerabilities: - Shoulder surfing - Dictionary attacks - User error Graphical Passwords Advantages: o Humans process graphical images easily o Associate image to events or people o Difficult to implement attacks Disadvantages: o Shoulder Surfing Password Scheme Strongly Resistant to Spyware - Password selection screen is a 121 icon grid - User picks 4 password icons - Each icon is part of a group with variations on each item o (i.e. blue socks with different decorations) - For each icon, the user enters a string - Strings are supposed to be personally relevant - To log in, a subset of the icons are displayed - The user clicks on the variation of his icons that are present - By clicking on the icon, the portion of the string that corresponds with the icon is automatically entered in the text password field Picture Password - User is presented with a grid of pictures (photographs) or segments of a single picture - User clicks on a sequence of pictures - Each segment of the picture grid is associated with a value matrix - Weakness: Picture passwords of dogs o susceptible to people who know the dog owner

Passfaces - Password grid is composed of pictures of faces - Users are presented with 3 x 3 grids - Users pick the same pictures which are presented in random positions on the grid - Users much select the correct pictures from each grid to properly authenticate User Choice in Graphical Password Schemes - Tested the strength of passface passwords and story passwords - People tend to select certain pictures based on gender and race (i.e. the password may be easily broken or guessed) - People tended to forget the stories they had made up to go with the sequence of picture icons - Results: o Users do not pick good passwords o There should be a limit to the number of incorrect guesses o Users must be educated on how to pick better passwords o Graphical passwords must be easy to remember

You might also like