A Shoulder-Surfing Resistant Scheme Embedded in Traditional Passwords
| dc.contributor.author | Lai, Jianwei | |
| dc.contributor.author | Arko, Ernest | |
| dc.date.accessioned | 2020-12-24T20:29:30Z | |
| dc.date.available | 2020-12-24T20:29:30Z | |
| dc.date.issued | 2021-01-05 | |
| dc.description.abstract | Typing passwords is vulnerable to shoulder-surfing attacks. We proposed a shoulder-surfing resistant scheme embedded in traditional textual passwords in this study. With the proposed scheme, when the password field is on focus, a pattern appears in it as a hint to tell the user how to enter a password. Following the hint, the user needs to skip some characters while typing the password. The characters to be skipped are randomly selected so that an observer will not be able to see the whole password even if the authentication procedure was recorded. We evaluated the proposed scheme in a usability study. Compared to traditional passwords, our scheme achieved a similar level of accuracy while only required marginal additional time to authenticate users. Participants also expressed significantly higher acceptance of the new technique for security-sensitive applications and gave it significantly higher ratings in perceived security, shoulders-surfing resistance, camera-recording resistance, and guess-attack resistance. | |
| dc.format.extent | 9 pages | |
| dc.identifier.doi | 10.24251/HICSS.2021.860 | |
| dc.identifier.isbn | 978-0-9981331-4-0 | |
| dc.identifier.uri | http://hdl.handle.net/10125/71481 | |
| dc.language.iso | English | |
| dc.relation.ispartof | Proceedings of the 54th Hawaii International Conference on System Sciences | |
| dc.rights | Attribution-NonCommercial-NoDerivatives 4.0 International | |
| dc.rights.uri | https://creativecommons.org/licenses/by-nc-nd/4.0/ | |
| dc.subject | Security and Privacy Aspects of Human-Computer-Interactions | |
| dc.subject | shoulder-surfing resistant | |
| dc.subject | password | |
| dc.subject | mobile phone | |
| dc.subject | partial password | |
| dc.title | A Shoulder-Surfing Resistant Scheme Embedded in Traditional Passwords | |
| prism.startingpage | 7144 |
Files
Original bundle
1 - 1 of 1