scholarly journals A Pattern-Based Multi-Factor Authentication System

2019 ◽  
Vol 20 (1) ◽  
pp. 101-112 ◽  
Author(s):  
Pankhuri . ◽  
Akash Sinha ◽  
Gulshan Shrivastava ◽  
Prabhat Kumar
Keyword(s):  
Artificial Intelligence ◽  
User Authentication ◽  
Authentication Scheme ◽  
Brute Force ◽  
Security Attacks ◽  
Graphical Password ◽  
Efficient Strategy ◽  
Shoulder Surfing ◽  
Different Types ◽  
Authentication System

User authentication is an indispensable part of a secure system. The traditional authentication methods have been proved to be vulnerable to different types of security attacks. Artificial intelligence is being applied to crack textual passwords and even CAPTCHAs are being dismantled within few attempts. The use of graphical password as an alternate to the textual passwords for user authentication can be an efficient strategy. However, they have been proved to be susceptible to shoulder surfing like attacks. Advanced authentication systems such as biometrics are secure but require additional infrastructure for efficient implementation. This paper proposes a novel pattern-based multi-factor authentication scheme that uses a combination of text and images resulting for identifying the legitimate users. The proposed system has been mathematically analyzed and has been found to provide much larger password space as compared to simple text based passwords. This renders the proposed system secure against brute force and other dictionary based attacks. Moreover, the use of text along with the images also mitigates the risk of shoulder surfing.

Shoulder-Surfing Resistant Smartphone Authentication Scheme Using Virtual Joystick

2013 ◽  
Vol 284-287 ◽  
pp. 3497-3501 ◽  
Author(s):  
Si Wan Kim ◽  
Hyun Yi Yi ◽  
Gun Il Ma ◽  
Jeong Hyun Yi
Keyword(s):  
Mobile Device ◽  
User Authentication ◽  
Authentication Scheme ◽  
Brute Force ◽  
Password Authentication ◽  
Graphical Password ◽  
Shoulder Surfing ◽  
Authentication Schemes ◽  
Brute Force Attack

User authentication techniques such as the setting of passwords are gradually gaining importance as a means of managing important information stored in smartphones. Existing text–based password authentication schemes have the advantages of being quick and easy to use. However, they are problematic in that passwords are easily exposed to shoulder-surfing attack. In addition, a graphical password authentication scheme has the limitation of being difficult to apply to mobile device environments, in which a lot of information must be remembered and small-sized screens are provided. Therefore, in this paper, we propose a new hybrid password authentication scheme using a pocket billiard and a virtual joystick, which is secure against shoulder-surfing, brute force attack, and smudge attack and has excellent usability.

scholarly journals Attacks on Graphical Password: A Study on Defense Mechanisms and Limitations

2021 ◽  
Vol 3 (4) ◽  
pp. 180-183
Author(s):  
Indrani Roy ◽  
Ajmerry Hossain ◽  
SARKER TANVEER AHMED RUMEE
Keyword(s):  
Defense Mechanisms ◽  
State Of The Art ◽  
User Authentication ◽  
Social Engineering ◽  
Brute Force ◽  
Graphical Password ◽  
Shoulder Surfing ◽  
User Friendly

User authentication is mostly reliant on password-based based verification. Users generally used text-based passwords, which are user-friendly but often predictable and vulnerable to some common attacks. To overcome these shortcomings, graphical authentication methods have emerged. Here, users choose a sequence of images as passwords. Though such methods help users to better remember their passwords, they too suffer from attacks seen in the case of textual passwords. This paper presents a comprehensive summary of the vulnerabilities state of the art graphical password schemes against the following well-known attacks -  Dictionary, Guessing, Brute force, Shoulder surfing, Spyware, and Social engineering. We believe the findings of this study can help researchers design more secure graphical password schemes making them more usable and a realistic replacement for text-based passwords.  

scholarly journals Graphical password scheme to diminish shoulder surfing

2017 ◽  
Vol 7 (1.1) ◽  
pp. 234
Author(s):  
D. Sri Ram Varma ◽  
K. Meghana ◽  
V. Sai Deepak ◽  
R. Murugan
Keyword(s):  
Authentication Scheme ◽  
Biometric Authentication ◽  
Brute Force ◽  
Graphical Password ◽  
The People ◽  
Shoulder Surfing ◽  
Common Technique ◽  
Authentication Schemes ◽  
Dictionary Attacks

Many authentication schemes are known to us but none of them are completely secure. Textual password is the most common technique used by majority of the people in the industry. But Textual passwords are vulnerable to dictionary attacks, keyloggers, brute-force attacks, even guessing may work out sometimes. Alternative authentication schemes have been proposed to overcome this problem, some of them are Biometric authentication, retina based authentication, graphical password scheme ETC., Authentication Schemes such as biometric and retina scans are too costly, so they are not always preferred. Not every graphical authentication is secure and efficient. In this paper, an authentication scheme with a combination of text and colour is proposed. This allows the user to log-in to the framework a little more secure.

scholarly journals Graphical User Authentication System Resistant to Shoulder Surfing Attack

2019 ◽  
pp. 1-8 ◽  
Author(s):  
Oluwaseyifunmitan Osunade ◽  
Iyanuoluwa A. Oloyede ◽  
Titilayo O. Azeez
Keyword(s):  
Information Security ◽  
User Authentication ◽  
Traditional Methods ◽  
Graphical Password ◽  
Shoulder Surfing ◽  
Authentication System ◽  
Alternative Solutions ◽  
Visual Interface

User authentication is one of the most significant issues in the field of Information Security. The most common and convenient authentication method used is the alphanumeric password  which has significant drawbacks. To overcome the vulnerabilities of traditional methods, graphical password schemes have been developed as possible alternative solutions to text-based scheme. A potential drawback of graphical password schemes is that they are more vulnerable to shoulder surfing than conventional alphanumeric text passwords due to their visual interface. To overcome the shortcoming of existing graphical password schemes this project focuses on developing a graphical authentication system that is resistant to shoulder surfing attack.

scholarly journals Multi-level Scalable Textual-Graphical Password Authentication Scheme for Web based Applications

2014 ◽  
Vol 3 (3-4) ◽  
Author(s):  
Umedha Behl ◽  
Divya Bhat ◽  
Neha Ubhaykar ◽  
Vaibhav Godbole ◽  
Saurabh Kulkarni
Keyword(s):  
Level Scheme ◽  
User Authentication ◽  
Authentication Scheme ◽  
Password Authentication ◽  
Web Based ◽  
Graphical Password ◽  
Security Authentication ◽  
Shoulder Surfing ◽  
Multi Level ◽  
Better Than

Nowadays, user authentication is one of the important topics in information security. Authentication is necessary in multi-user systems. User name and password are used to authenticate a user. Text-based strong password scheme can provide security to a certain degree. Users tend to pick short passwords or passwords that are easy to remember, which makes the passwords vulnerable for attackers to break. Furthermore, textual password is vulnerable to shoulder-surfing, hidden camera and spy-ware attacks. Graphical authentication has been proposed as a possible alternative solution to text-based authentication, motivated particularly by the fact that humans can remember images better than text. However, they are mostly vulnerable to shoulder surfing. In this paper, we propose a Multi-level Scalable Textual-Graphical Password Authentication Scheme for web based applications. This scheme integrates both graphical and textual password schemes, and provides multi-level authentication scheme as compared to previously proposed single level scheme. In this scheme multi-level authentication is obtained by making use of SMS service, hence provides more secure service. This scheme shows significant potential bridging the gap between conventional textual password and graphical password. Further enhancements of this scheme are proposed and briefly discussed.

Sign in / Sign up

Export Citation Format

Share Document