Conference proceeding
Design and evaluation of a shoulder-surfing resistant graphical password scheme
Proceedings of the working conference on advanced visual interfaces, v 2006, pp 177-184
23 May 2006
Abstract
When users input their passwords in a public place, they may be at risk of attackers stealing their password. An attacker can capture a password by direct observation or by recording the individual's authentication session. This is referred to as shoulder-surfing and is a known risk, of special concern when authenticating in public places. Until recently, the only defense against shoulder-surfing has been vigilance on the part of the user. This paper reports on the design and evaluation of a game-like graphical method of authentication that is resistant to shoulder-surfing. The Convex Hull Click (CHC) scheme allows a user to prove knowledge of the graphical password safely in an insecure location because users never have to click directly on their password images. Usability testing of the CHC scheme showed that novice users were able to enter their graphical password accurately and to remember it over time. However, the protection against shoulder-surfing comes at the price of longer time to carry out the authentication.
Metrics
11 Record Views
300 citations in Scopus
Details
- Title
- Design and evaluation of a shoulder-surfing resistant graphical password scheme
- Creators
- Susan Wiedenbeck - Drexel UniversityJim Waters - Drexel UniversityLeonardo Sobrado - Rutgers, The State University of New JerseyJean-Camille Birget - Rutgers, The State University of New Jersey
- Publication Details
- Proceedings of the working conference on advanced visual interfaces, v 2006, pp 177-184
- Conference
- Working conference on advanced visual interfaces
- Series
- AVI '06
- Publisher
- Association for Computing Machinery (ACM)
- Number of pages
- 1
- Resource Type
- Conference proceeding
- Language
- English
- Academic Unit
- [Retired Faculty]
- Scopus ID
- 2-s2.0-34247167942
- Other Identifier
- 991019173418704721