Study and Development of Graphical Authentication System for Secure File Transmission

The text-based password has been the most common practice from ancient days till present. Text based pass-words are also known for various threats, and it is prone to attacks like guessing attacks, dictionary attacks, social engineering attacks, brute force attacks, etc. The next immediate concept following the text based password is the graphical password schemes to improve password security and usability. In present days graphical passwords are being implemented more commonly. This approach is different from the traditional alpha numeric as it deals with images. In this paper a survey study is done to analyse various techniques used for authentication and also some of the methods for graphical authentication techniques like Pass Matrix, Cued Clicked points(CPP), CAPTCHA, Image distortion with text association, Doodle scheme, Standard recognition-based scheme, Stegno pin authentication method. Based on the existing methods, the future research can be done in order to improve security for graphical authentication.

Download Full-text

AcSIS: Authentication System Based on Image Splicing

Engineering, Technology & Applied Science Research ◽

10.48084/etasr.3060 ◽

2019 ◽

Vol 9 (5) ◽

pp. 4808-4812

Author(s):

S. Hamid ◽

N. Z. Bawany ◽

S. Khan

Keyword(s):

Success Rate ◽

Brute Force ◽

Image Splicing ◽

Password Authentication ◽

Trade Off ◽

Graphical Passwords ◽

Password Security ◽

Authentication System ◽

Digital Assets ◽

Dictionary Attacks

Text-based passwords are widely used for the authentication of digital assets. Typically, password security and usability is a trade-off, i.e. easy-to-remember passwords have higher usability that makes them vulnerable to brute-force and dictionary attacks. Complex passwords have stronger security but poor usability. In order to strengthen the security in conjunction with the improved usability, we hereby propose a novel graphical authentication system. This system is a picture-based password scheme which comprises of the method of image splicing. Authentication data were collected from 33 different users. The usability of the method was evaluated via a comparison between the number of correct and incorrect authentication attempts and time taken. Additionally, a comparison was made between our proposed method and a complex text-based password authentication method using the authentication success rate. Authentication using image splicing proved to be resilient to brute-force attacks since the processing of images consumes a voluminous password space. The evaluation of the usability revealed that graphical passwords were easy-to-remember, resulting in a higher number of correct attempts. The proposed method produced 50% higher success rate compared to the text-based method. Findings motivate the use of the proposed method for securing digital assets.

Download Full-text

Security Analysis Method of Recognition-Based Graphical Password

Jurnal Teknologi ◽

10.11113/jt.v72.3941 ◽

2015 ◽

Vol 72 (5) ◽

Cited By ~ 1

Author(s):

Touraj Khodadadi ◽

Mojtaba Alizadeh ◽

Somayyeh Gholizadeh ◽

Mazdak Zamani ◽

Mahdi Darvishi

Keyword(s):

Security Analysis ◽

Security Level ◽

Analysis Method ◽

New Approach ◽

Graphical Password ◽

Graphical Passwords ◽

Authentication System

One of the most important primitive security mechanisms is the authentication system. Authentication through the use of password is a commonly utilized mechanism for authentication of users. In general, users utilize characters as their password; however, passwords based on texts are hard to recall and if the passwords are too simple and predictable, then there is the danger of being susceptible to threats. In order to overcome the problems with authentication, an alternative and new approach has been introduced utilizing images for passwords. The idea gains support from the knowledge that the human’s brain is highly capable of remembering many detailed images, however remembering texts are more difficult. Users who utilize the graphic authentication carry out certain functions on the images such as to click, drag, and movement of the mouse and so on. This research reviews several common Recognition-Based graphical password methods and analyzes their security based on the estimation criteria. Moreover, the research defines a metric that would make it possible for the analysis of the security level of the graphical passwords that are Recognition-Based. Finally, a table comparing the limits of each method based on the security level is presented.

Download Full-text

A Pattern-Based Multi-Factor Authentication System

Scalable Computing Practice and Experience ◽

10.12694/scpe.v20i1.1460 ◽

2019 ◽

Vol 20 (1) ◽

pp. 101-112 ◽

Cited By ~ 1

Author(s):

Pankhuri . ◽

Akash Sinha ◽

Gulshan Shrivastava ◽

Prabhat Kumar

Keyword(s):

Artificial Intelligence ◽

User Authentication ◽

Authentication Scheme ◽

Brute Force ◽

Security Attacks ◽

Graphical Password ◽

Efficient Strategy ◽

Shoulder Surfing ◽

Different Types ◽

Authentication System

User authentication is an indispensable part of a secure system. The traditional authentication methods have been proved to be vulnerable to different types of security attacks. Artificial intelligence is being applied to crack textual passwords and even CAPTCHAs are being dismantled within few attempts. The use of graphical password as an alternate to the textual passwords for user authentication can be an efficient strategy. However, they have been proved to be susceptible to shoulder surfing like attacks. Advanced authentication systems such as biometrics are secure but require additional infrastructure for efficient implementation. This paper proposes a novel pattern-based multi-factor authentication scheme that uses a combination of text and images resulting for identifying the legitimate users. The proposed system has been mathematically analyzed and has been found to provide much larger password space as compared to simple text based passwords. This renders the proposed system secure against brute force and other dictionary based attacks. Moreover, the use of text along with the images also mitigates the risk of shoulder surfing.

Download Full-text

Qualitative Analysis of Recognition-based Graphical Password Authentication Schemes for Accessing the Cloud

Indonesian Journal of Electrical Engineering and Computer Science ◽

10.11591/ijeecs.v7.i2.pp507-513 ◽

2017 ◽

Vol 7 (2) ◽

pp. 507

Author(s):

K Gangadhara Rao ◽

Vijayakumari Rodda ◽

B Basaveswara Rao

Keyword(s):

Qualitative Analysis ◽

Cloud Services ◽

Point Scale ◽

Major Barrier ◽

Graphical Password ◽

Graphical Passwords ◽

Cloud Application ◽

Enterprise Applications ◽

Authentication Schemes ◽

Authentication System

<p>Cloud computing is increasingly becoming popular as many enterprise applications and data are moving into cloud platforms. However, a major barrier for cloud application is real and perceived lack of security. There are many security mechanisms exercised to utilize cloud services. Amongst them the prominent and primitive security mechanism is the Authentication System. Traditional text based passwords are susceptible to threats. Tough passwords are hard to recall and easily recalled passwords are simple and predictable. Graphical passwords are introduced as the better alternative. Two types of graphical passwords are there – recall based and recognition based. This research reviews several Recognition-Based Graphical Password methods and analyses their security based on the estimation criteria. Moreover, the research defines a metric called a 14-point scale that would make it possible for the qualitative analysis of the graphical passwords schemes. </p>

Download Full-text

GRAPHICAL PASSWORD AUTHENTICATION - SURVEY

10.36106/gjra/3011151 ◽

2020 ◽

pp. 1-7

Author(s):

Jasmin P. Bhootwala ◽

Dr. Pravin H. Bhathawala*

Keyword(s):

Data Protection ◽

The Other ◽

Future Research ◽

Password Authentication ◽

Graphical Password ◽

Graphical Passwords ◽

Design And Implementation ◽

The Future ◽

Complete Survey ◽

Important Design

The most common computer authentication approach is to use alphanumerical usernames and passwords. This method has been proven to have vast drawbacks. For example, users tend to choose passwords that can be easily guessed. On the other hand, if a password is difcult to guess, then it is frequently difcult to remember. To address this problem, some researchers have developed authentication strategies that use images as passwords. In this paper, we conduct a complete survey of the current graphical password techniques. We classify these strategies into two categories: recognition-based and recall-based approaches. We discuss the strengths and barriers of each technique and point out the future research instructions in this area. We also try to answer two necessary questions: “Are graphical passwords as secure as text-based passwords?”; “What are the important design and implementation issues for graphical passwords?” This survey will be useful for data protection researchers and practitioners who are involved in nding an choice to text-based authentication methods.

Download Full-text

Attacks on Graphical Password: A Study on Defense Mechanisms and Limitations

International Journal of Information Technology and Applied Sciences (IJITAS) ◽

10.52502/ijitas.v3i4.201 ◽

2021 ◽

Vol 3 (4) ◽

pp. 180-183

Author(s):

Indrani Roy ◽

Ajmerry Hossain ◽

SARKER TANVEER AHMED RUMEE

Keyword(s):

Defense Mechanisms ◽

State Of The Art ◽

User Authentication ◽

Social Engineering ◽

Brute Force ◽

Graphical Password ◽

Shoulder Surfing ◽

User Friendly

User authentication is mostly reliant on password-based based verification. Users generally used text-based passwords, which are user-friendly but often predictable and vulnerable to some common attacks. To overcome these shortcomings, graphical authentication methods have emerged. Here, users choose a sequence of images as passwords. Though such methods help users to better remember their passwords, they too suffer from attacks seen in the case of textual passwords. This paper presents a comprehensive summary of the vulnerabilities state of the art graphical password schemes against the following well-known attacks - Dictionary, Guessing, Brute force, Shoulder surfing, Spyware, and Social engineering. We believe the findings of this study can help researchers design more secure graphical password schemes making them more usable and a realistic replacement for text-based passwords.

Download Full-text

Graphical password scheme to diminish shoulder surfing

International Journal of Engineering & Technology ◽

10.14419/ijet.v7i1.1.9474 ◽

2017 ◽

Vol 7 (1.1) ◽

pp. 234

Author(s):

D. Sri Ram Varma ◽

K. Meghana ◽

V. Sai Deepak ◽

R. Murugan

Keyword(s):

Authentication Scheme ◽

Biometric Authentication ◽

Brute Force ◽

Graphical Password ◽

The People ◽

Shoulder Surfing ◽

Common Technique ◽

Authentication Schemes ◽

Dictionary Attacks

Many authentication schemes are known to us but none of them are completely secure. Textual password is the most common technique used by majority of the people in the industry. But Textual passwords are vulnerable to dictionary attacks, keyloggers, brute-force attacks, even guessing may work out sometimes. Alternative authentication schemes have been proposed to overcome this problem, some of them are Biometric authentication, retina based authentication, graphical password scheme ETC., Authentication Schemes such as biometric and retina scans are too costly, so they are not always preferred. Not every graphical authentication is secure and efficient. In this paper, an authentication scheme with a combination of text and colour is proposed. This allows the user to log-in to the framework a little more secure.

Download Full-text

Research and Development of User Authentication using Graphical Passwords: A Prospective Methodology

International Journal of Innovative Technology and Exploring Engineering - Special Issue ◽

10.35940/ijitee.i3071.0789s319 ◽

2019 ◽

Vol 8 (9S3) ◽

pp. 385-390

Keyword(s):

User Authentication ◽

Brute Force ◽

Computer User ◽

Dictionary Attack ◽

Password Authentication ◽

Graphical Password ◽

Graphical Passwords ◽

A New Technique ◽

Guessing Attack ◽

Brute Force Attack

Nowadays in information security user authentication is a very important task. In most of the computer, user authentication depends on the alphanumeric username and password. It means text-based password. But, this is not highly secure because of hackers can easily break the password. Brute force attack, dictionary attack, guessing attack etc. these all are some possible attacks on the password. If the user chooses a difficult password to prevent the system from the attackers which is very much harder for the user to remember such a difficult password. So, to resolve this problem introduced a new technique called graphical password authentication. This paper presents a detailed survey of user authentication techniques using a graphical password. It contains basically two type approaches. They are recognition-based and recall-based approaches. This survey discusses the different techniques about Graphical password authentication and their advantages and limitations. The survey provides a roadmap for the development of new graphical authentication scheme.

Download Full-text

A Review on Shoulder Surfing Attack in Authentication Technique using Cued Click Point (CCP)

International Journal of Advanced Research in Science, Communication and Technology ◽

10.48175/ijarsct-v2-i3-324 ◽

2021 ◽

pp. 141-144

Author(s):

Jasmin P. Bhootwala ◽

Dr Subhash G. Desai

Keyword(s):

User Authentication ◽

Social Engineering ◽

Image Point ◽

Dictionary Attack ◽

Graphical Password ◽

Graphical Passwords ◽

Security Authentication ◽

Shoulder Surfing ◽

Brute Force Attack ◽

Graphical System

Security important now a days. Users of primary preference to security. Authentication process provide security to the user. Authentication process of identifying the person’s identity or conforming the identity of person. There are various authentication method, but most commonly used method is textual password. Combination of alphabet and number create a secure password. But some drawbacks i.e. it easily guess by also called attacker. If it make complex then it hard to memorize. Also various attacks brute force attack, dictionary attack, social engineering attack, evesdropping, etc. of textual password graphical password system introduced. Graphical system is easy to memorize but it undergo shoulder surfing attack which big problem. any entity or person can observe users password directly or by using any device. So as an alternative Graphical Passwords are introduced to resist the Shoulder surfing attack. the above mentioned attacks the new scheme highlights cued click point (CCP), Using graphical password as input and grid lines for image point verification. This paper survey shoulder surfing attacks in graphical password approach.

Download Full-text

Graphical Password Using Captcha

International Journal of Advances in Applied Sciences ◽

10.11591/ijaas.v5.i2.pp94-100 ◽

2016 ◽

Vol 5 (2) ◽

pp. 94

Author(s):

Y.Chandra Sekhar Reddy ◽

M.Venkateswara Rao ◽

M. Kameswara Rao ◽

C.V. Phaneendra Kumar ◽

A. Anil Sai

Keyword(s):

21St Century ◽

Cyber Security ◽

Main Issue ◽

Graphical Password ◽

Graphical Passwords ◽

Security Attack ◽

Key Factor ◽

Dictionary Attacks

In this 21st century one of the main issue to tackle was Cyber Security attack. We have numerous authentication processes like two key factor passwords, graphical passwords and many other. Text based passwords are prone to many attacks like dictionary attacks. In this paper, we have implemented a new authentication method namely; a family of graphical passwords built on Captcha technology. As graphical password addresses many security problems like online guessing attacks, relay attacks etc. Captcha is used to distinguish humans and bots. So, we use images with captcha’s as one of the authentication step along with normal alpha-numeric password. It also overcome the problems of pass points in graphical password systems.

Download Full-text