AcSIS: Authentication System Based on Image Splicing

Text-based passwords are widely used for the authentication of digital assets. Typically, password security and usability is a trade-off, i.e. easy-to-remember passwords have higher usability that makes them vulnerable to brute-force and dictionary attacks. Complex passwords have stronger security but poor usability. In order to strengthen the security in conjunction with the improved usability, we hereby propose a novel graphical authentication system. This system is a picture-based password scheme which comprises of the method of image splicing. Authentication data were collected from 33 different users. The usability of the method was evaluated via a comparison between the number of correct and incorrect authentication attempts and time taken. Additionally, a comparison was made between our proposed method and a complex text-based password authentication method using the authentication success rate. Authentication using image splicing proved to be resilient to brute-force attacks since the processing of images consumes a voluminous password space. The evaluation of the usability revealed that graphical passwords were easy-to-remember, resulting in a higher number of correct attempts. The proposed method produced 50% higher success rate compared to the text-based method. Findings motivate the use of the proposed method for securing digital assets.

Download Full-text

Study and Development of Graphical Authentication System for Secure File Transmission

International Journal of Engineering & Technology ◽

10.14419/ijet.v7i4.10.21042 ◽

2018 ◽

Vol 7 (4.10) ◽

pp. 470

Author(s):

P. L.P.Ramyasri ◽

D. Malathi ◽

J. D. Dorathi Jayaseeli ◽

K. Senthilkumar

Keyword(s):

Social Engineering ◽

Survey Study ◽

Future Research ◽

Brute Force ◽

Graphical Password ◽

Graphical Passwords ◽

Password Security ◽

Authentication System ◽

Present Text ◽

Dictionary Attacks

The text-based password has been the most common practice from ancient days till present. Text based pass-words are also known for various threats, and it is prone to attacks like guessing attacks, dictionary attacks, social engineering attacks, brute force attacks, etc. The next immediate concept following the text based password is the graphical password schemes to improve password security and usability. In present days graphical passwords are being implemented more commonly. This approach is different from the traditional alpha numeric as it deals with images. In this paper a survey study is done to analyse various techniques used for authentication and also some of the methods for graphical authentication techniques like Pass Matrix, Cued Clicked points(CPP), CAPTCHA, Image distortion with text association, Doodle scheme, Standard recognition-based scheme, Stegno pin authentication method. Based on the existing methods, the future research can be done in order to improve security for graphical authentication.

Download Full-text

Implementation of a Secured Authentication System using a Policy Generator with Email Notifications

International Journal of Engineering and Advanced Technology - Regular Issue ◽

10.35940/ijeat.a1036.1291s319 ◽

2019 ◽

Vol 9 (1S3) ◽

pp. 181-186

Keyword(s):

Success Rate ◽

Data Security ◽

Success Probability ◽

System Security ◽

Training Phase ◽

Brute Force ◽

Authentication System

For securing the login, passwords of users from intruders and hackers, the website owners and administrators are providing certain guidelines to the users to create secure and strong passwords using a mechanism called Password Checkers. These guidelines which are provided helps the users to create strong passwords, these guidelines are also becoming the raw input for the hackers as they clearly show based on which policy the password was generated which increases the risk for brute force attacking with more ease. There by increasing the success rate probability for the brute force attackers. To overcome and to decrease the success probability for brute force attacking the Dynamic Password Policy Generator is being devised.The profiles of users are built and maintained by the system automatically bases on the interaction with the monitored database in training phase. This DBSAFE system will help both the administrator as well as the users to feel secured in terms with their data security. Also whenever, an unsuccessful attempts leaving a notification through an email will always add a extra layer of security to the system. When the system’s critical files were all under watch and someone try to access those, concerned people will be intimated to verify the system security keeping the system and database safe and healthy.

Download Full-text

Visualizing Keyboard Pattern Passwords

Information Visualization ◽

10.1057/ivs.2010.12 ◽

2010 ◽

Vol 10 (2) ◽

pp. 127-133 ◽

Cited By ~ 2

Author(s):

Dino Schweitzer ◽

Jeff Boleng ◽

Colin Hughes ◽

Louis Murphy

Keyword(s):

Real World ◽

Dictionary Attack ◽

Security Vulnerabilities ◽

Suggested Approach ◽

Trade Off ◽

Graphical Passwords ◽

Alternative Systems ◽

Visualization Techniques ◽

Dictionary Attacks

Passwords are fundamental security vulnerabilities in many systems. Several researchers have investigated the trade-off between password memorability versus resiliency to cracking and have looked at alternative systems such as graphical passwords and biometrics. To create stronger passwords, many systems enforce rules regarding the required length and types of characters passwords must contain. Another suggested approach is to use passphrases to combat dictionary attacks. One common ‘trick’ used to remember passwords that conform to complex rules is to select a pattern of keys on the keyboard. Although appearing random, the pattern is easy to remember. The purpose of this research was to investigate how often patterns are used, whether patterns could be classified into common categories, and whether those categories could be used to attack and defeat pattern-based passwords. Visualization techniques were used to collect data and assist in pattern categorization. The approach successfully identified 2 out of 11 passwords in a real-world password file that were not discovered with a traditional dictionary attack. This article will present the approach used to collect and categorize patterns, and describe the resulting attack method that successfully identified passwords in a live system.

Download Full-text

Research and Development of User Authentication using Graphical Passwords: A Prospective Methodology

International Journal of Innovative Technology and Exploring Engineering - Special Issue ◽

10.35940/ijitee.i3071.0789s319 ◽

2019 ◽

Vol 8 (9S3) ◽

pp. 385-390

Keyword(s):

User Authentication ◽

Brute Force ◽

Computer User ◽

Dictionary Attack ◽

Password Authentication ◽

Graphical Password ◽

Graphical Passwords ◽

A New Technique ◽

Guessing Attack ◽

Brute Force Attack

Nowadays in information security user authentication is a very important task. In most of the computer, user authentication depends on the alphanumeric username and password. It means text-based password. But, this is not highly secure because of hackers can easily break the password. Brute force attack, dictionary attack, guessing attack etc. these all are some possible attacks on the password. If the user chooses a difficult password to prevent the system from the attackers which is very much harder for the user to remember such a difficult password. So, to resolve this problem introduced a new technique called graphical password authentication. This paper presents a detailed survey of user authentication techniques using a graphical password. It contains basically two type approaches. They are recognition-based and recall-based approaches. This survey discusses the different techniques about Graphical password authentication and their advantages and limitations. The survey provides a roadmap for the development of new graphical authentication scheme.

Download Full-text

Password Authentication System using Coordinates & Location

International Journal of Innovative Technology and Exploring Engineering - Special Issue ◽

10.35940/ijitee.a4384.119119 ◽

2019 ◽

Vol 9 (1) ◽

pp. 1531-1535

Keyword(s):

Graphical User Interface ◽

User Authentication ◽

Geographical Location ◽

Brute Force ◽

Dictionary Attack ◽

Password Authentication ◽

Cryptographic Keys ◽

Frame Work ◽

Authentication System ◽

Location Point

Password authentication system is a very important factor for every system which needs to be secure. Every password is easy to crack and people are looking for a strong password to their systems. Here we use a password authentication system that is designed for high security and could be easily put into old system. In our frame work we are using cryptographic representation for converting location point into coordinates. Our primary aim is to prevent hacking through all kinds of brute force algorithms. It is concerned with including client’s geographical location as an important authentication factor to enhance security. Techniques to integrate location as an authentication factor as well as techniques to generate location based cryptographic keys are reviewed and discussed .Most importantly our system combine graphical user authentication and location coordinates .Existing system was vulnerable to dictionary attack algorithm and salt data algorithm ,so efforts are been taken to generate non repeatable graphical user interface system using coordinates .

Download Full-text

A Novel Cue based Picture Word Shape Character Password Creation Scheme

International Journal of Digital Crime and Forensics ◽

10.4018/ijdcf.2015070103 ◽

2015 ◽

Vol 7 (3) ◽

pp. 37-59 ◽

Cited By ~ 2

Author(s):

Kevin Curran ◽

Andrew Snodgrass

Keyword(s):

Side Effects ◽

Success Rate ◽

Rapid Rate ◽

Brute Force ◽

Password Security ◽

Internet Users ◽

Word Shape

The number of internet users is growing at a rapid rate and this means users now have to remember passwords for many different accounts. The side effects of this increase of user accounts is that users are putting password usability before password security in order to remember these passwords. This paper outlines a novel password creation scheme for creating strong, secure unique passwords that are easier for users to remember on multiple sites. The scheme includes features to more easily create a secure password and recall this password, whilst including multiple layers of security against a targeted attack by an adversary. Results showed that users who did not use a scheme had a much lower login success rate for their accounts than the users who used the created scheme. They also showed that the average password length for each group of users was the same meaning the created scheme passwords in this sample has no greater protection against brute-force attacks, but in terms of dictionary and hybrid attacks the scheme passwords generally seemed to have a lot more protection.

Download Full-text