JOURNAL BROWSE
Search
Advanced SearchSearch Tips
Password-based user authentication scheme using a dual-display method
facebook(new window)  Pirnt(new window) E-mail(new window) Excel Download
 Title & Authors
Password-based user authentication scheme using a dual-display method
Yong, Seung-Lim;
  PDF(new window)
 Abstract
In this paper, we propose a user friendly password input method for mobile devices which is secure against SSA. The proposed method is a numeric password input method such as a conventional PIN method. One of the buttons, numbers and colors, so as to display the two pieces of information to double. The user can select one of the colors or numbers within one button to type in the password. Because an attacker does not know whether the user has entered any color and number, the proposed technique is safe from the SSA. Also to be secure for smudge attacks and password guessing attacks through random changes in the number and color information.
 Keywords
Password;Double display;User authentication;
 Language
Korean
 Cited by
 References
1.
Y. Berger, A. Wool, and A. Yeredor, "Dictionary attacks using keyboard acoustic emanations," Proceeding of the 13th ACM Conf. on Computer and Communications Security, pp.245-254, 2006.

2.
M. G. Kuhn, "Electromagnetic evesdropping risks of flat-panel displays," Proceeding of the 4th Workshop on Privacy Enhancing Technologies, pp.23-25, 2004.

3.
S. Wiedenbeck, J.Water, L.Sobrado, and J. Birget, " Design and evaluation of a shoulder-surfing resistant graphical password scheme," Proceeding of the Advanced Visual Interfaces, pp. 177-184, 2006.

4.
A. J. Aviv, et al., "Smudge Attacks on Smartphone Touch Screens," Proceedings of the 4th USENIX conference on Offensive technologies, 2010.

5.
F.Tari, A. Ozol and S.H.Holden, "A comparison of perceived and real shoulder-surfing risks between alphanumeric and graphical passwords," Proceeding of the second symposium on usable privacy and security, 2006.

6.
V. Roth, K. Richter, and R. Freidinger, "A PIN-entry method resilient against shoulder surfing," Proceedings of ACM Conf. Computer Communication and Security, pp. 236-245, 2004.

7.
M-K. Lee, "Security notions and advanced method for human shoulder-surfing resistant PIN-entry," IEEE Transactions on Information Forensics and Security, vol. 9, no. 4, pp.695-708, Apr. 2014. crossref(new window)

8.
A. D. Luca, K. Hertzshuch, and H. Hussmann, "ColorPin-securing PIN Entry through indirect input", International Conference on Human Factors in Computing Systems, pp. 1103-1106, 2010.

9.
G. E. Blonder, "Graphical passwords", United States Patent 5559961, 1996.

10.
Paul Dunphy, James Nicholson and Patrick Olivier, Securing passfaces for description, Proceedings of the 4th symposium on Usable privacy and security, 2008.

11.
Jermyn, I., Mayer A., Monrose, F., Reiter, M., and Rubin, "The design and analysis of graphical passwords", Proceedings of USENIX Security Symposium, 1999.

12.
H. Zhao and X. Li, "S3PAS: A Scalable Shoulder-Surfing Resistant Textual-Graphical Password Authentication Scheme," Proceedings. of 21st international Conference on Advanced Information Networking and Applications Workshops, 2007