Sciweavers

AVI
2006

Design and evaluation of a shoulder-surfing resistant graphical password scheme

14 years 1 months ago
Design and evaluation of a shoulder-surfing resistant graphical password scheme
When users input their passwords in a public place, they may be at risk of attackers stealing their password. An attacker can capture a password by direct observation or by recording the individual's authentication session. This is referred to as shoulder-surfing and is a known risk, of special concern when authenticating in public places. Until recently, the only defense against shoulder-surfing has been vigilance on the part of the user. This paper reports on the design and evaluation of a game-like graphical method of authentication that is resistant to shoulder-surfing. The Convex Hull Click (CHC) scheme allows a user to prove knowledge of the graphical password safely in an insecure location because users never have to click directly on their password images. Usability testing of the CHC scheme showed that novice users were able to enter their graphical password accurately and to remember it over time. However, the protection against shoulder-surfing comes at the price of lo...
Susan Wiedenbeck, Jim Waters, Leonardo Sobrado, Je
Added 30 Oct 2010
Updated 30 Oct 2010
Type Conference
Year 2006
Where AVI
Authors Susan Wiedenbeck, Jim Waters, Leonardo Sobrado, Jean-Camille Birget
Comments (0)