Abstract
User authentication is widely used in many Internet services and is also used by automatic teller machines (ATMs). Recently, there has been an increase in the ATM password thefts using small charge-coupled device cameras. This study discusses a user authentication method in which graphical passwords, instead of alphanumeric ones as, are used to mitigate observation attacks. Several techniques for password authentication have been discussed in various studies. However, there has not been sufficient research on authentication methods that use pass-images instead of pass-texts. This study proposes a user authentication method that is tolerant to serious attacks when a user's pass-image selection operation is video recorded twice. In addition, usage guidelines recommending eight pass-images are proposed, and the corresponding security strength is evaluated.
Original language | English |
---|---|
Pages (from-to) | 20-36 |
Number of pages | 17 |
Journal | International Journal of Computer Science and Applications |
Volume | 9 |
Issue number | 3 |
Publication status | Published - 2012 |
Keywords
- Graphical password
- Random attack
- User authentication
- Video-recording attack
ASJC Scopus subject areas
- Computer Science Applications