Abstract
With the rapid development of intelligent mobile devices and network applications, user authentication plays an important role to help protect people’s privacy and sensitive information. A large number of authentication textual and graphical schemes have been proposed in the literature, but the majority of them are vulnerable to shoulder surfing attacks, or have to sacrifice usability. Motivated by this challenge, we propose a graph-supplemented textual shoulder surfing resistant authentication system, called PassGrid. With a series of one-time login indicators and cyclic movable blocks with textual elements, PassGrid prevents attackers from guessing the passwords even with the help of a camera. To reduce users’ workload, they only have to memorize one set of the password. Our user study shows that PassGrid can achieve good performance regarding security and usability, i.e., average login time consumption of 22s with a small password length. Copyright © 2019 Springer Nature Singapore Pte Ltd.
Original language | English |
---|---|
Title of host publication | Security and privacy in social networks and big data: 5th International Symposium, SocialSec 2019, Copenhagen, Denmark, July 14-17, 2019, revised selected papers |
Editors | Weizhi MENG, Steven FURNELL |
Place of Publication | Singapore |
Publisher | Springer |
Pages | 251-263 |
ISBN (Electronic) | 9789811507588 |
ISBN (Print) | 9789811507571 |
DOIs | |
Publication status | Published - 2019 |
Citation
Zhou, T., Liu, L., Wang, H., Li, W., & Jiang, C. (2019). PassGrid: Towards graph-supplemented textual shoulder surfing resistant authentication. In W. Meng & S. Furnell (Eds.), Security and privacy in social networks and big data: 5th International Symposium, SocialSec 2019, Copenhagen, Denmark, July 14-17, 2019, revised selected papers (pp. 251-263). Springer. https://doi.org/10.1007/978-981-15-0758-8_19Keywords
- Graphical authentication
- Textual password
- Shoulder surfing resistant
- User authentication
- Security and usability