University of Sussex
Browse
main.pdf (10.05 MB)

A novel hybrid password authentication scheme based on text and image

Download (10.05 MB)
conference contribution
posted on 2023-06-09, 13:44 authored by Ian MackieIan Mackie, Merve Yildirim
Considering the popularity and wide deployment of text passwords, we predict that they will be used as a prevalent authentication mechanism for many years to come. Thus, we have carried out studies on mechanisms to enhance text passwords. These studies suggest that password space and memorability should be improved, with an additional mechanism based on images. The combination of text and images increases resistance to some password attacks, such as brute force and observing attacks. We propose a hybrid authentication scheme integrating text and recognition-based graphical passwords. This authentication scheme can reduce the phishing attacks because if users are deceived to share their key passwords, there is still a chance to save the complete password as attackers do not know the users' image preferences. In addition to the security aspect, the proposed authentication scheme increases memorability as it does not require users to remember long and complex passwords. Thus, with the proposed scheme users will be able to create strong passwords without sacrificing usability. The hybrid scheme also offers an enjoyable sign-in/log-in experience to users.

History

Publication status

  • Published

File Version

  • Accepted version

Journal

Data and Applications Security and Privacy

ISSN

0302-9743

Publisher

Springer Verlag

Page range

182-197

Event name

32nd Annual IFIP WG 11.3 Conference on Data and Applications Security and Privacy

Event location

Italy

Event type

conference

Event date

16-18 July 2018

ISBN

978-3-319-95729-6

Series

Lecture Notes in Computer Science

Department affiliated with

  • Informatics Publications

Research groups affiliated with

  • Foundations of Software Systems Publications

Full text available

  • Yes

Peer reviewed?

  • Yes

Editors

Stefano Parboschi, Florian Kerschbaum

Legacy Posted Date

2018-06-14

First Open Access (FOA) Date

2018-07-11

First Compliant Deposit (FCD) Date

2018-06-14

Usage metrics

    University of Sussex (Publications)

    Categories

    No categories selected

    Exports

    RefWorks
    BibTeX
    Ref. manager
    Endnote
    DataCite
    NLM
    DC