Enhancing click-draw based graphical passwords using multi-touch on mobile phones

Yuxin Meng; Wenjuan Li; Lam For Kwok

doi:10.1007/978-3-642-39218-4_5

Enhancing click-draw based graphical passwords using multi-touch on mobile phones

Yuxin Meng, Wenjuan Li, Lam For Kwok

Research output: Chapter in book / Conference proceeding › Conference article published in proceeding or book › Academic research › peer-review

20 Citations (Scopus)

Abstract

Graphical password based authentication systems are now becoming one of the potential alternatives to alleviate current over-reliance on traditional text-based password authentication. With the rapid development of mobile devices (i.e., the increase of computing power), this kind of authentication systems has been implemented on mobile phones to authenticate legitimate users and detect impostors. But in real deployment, we notice that users can utilize more actions like multi-touch on a mobile phone than on a common computer. The action of multi-touch, which refers to the process of touching a touchscreen with multiple fingers at the same time, is a distinguished feature on a touchscreen mobile phone. In this paper, we therefore attempt to explore the effect of multi-touch on creating graphical passwords in the aspect of security and usability. In particular, we conduct a study of using click-draw based graphical passwords in the evaluation, which combines current input types in the area of graphical passwords, and we further develop a multi-touch enabled scheme on mobile phones. Three experiments were conducted with 60 participants and the experimental results indicate that, by integrating the action of multi-touch, graphical passwords can be generally enhanced in the aspect of both security and usability.

Original language	English
Title of host publication	Security and Privacy Protection in Information Processing Systems - 28th IFIP TC 11 International Conference, SEC 2013, Proceedings
Editors	Lech J. Janczewski, Henry B. Wolfe, Sujeet Shenoi
Publisher	Springer New York LLC
Pages	55-68
Number of pages	14
ISBN (Electronic)	9783642392177
DOIs	https://doi.org/10.1007/978-3-642-39218-4_5
Publication status	Published - 2013
Externally published	Yes
Event	28th IFIP TC 11 International Conference, SEC 2013 - Auckland, New Zealand Duration: 8 Jul 2013 → 12 Jul 2013

Publication series

Name	IFIP Advances in Information and Communication Technology
Volume	405
ISSN (Print)	1868-4238
ISSN (Electronic)	1868-422X

Conference

Conference	28th IFIP TC 11 International Conference, SEC 2013
Country/Territory	New Zealand
City	Auckland
Period	8/07/13 → 12/07/13

Keywords

Graphical Passwords
Human Factors
Mobile Phones
Mobile Security
Multi-Touch
User Authentication

ASJC Scopus subject areas

Information Systems
Computer Networks and Communications
Information Systems and Management

More information

10.1007/978-3-642-39218-4_5

Cite this

Meng, Y., Li, W., & Kwok, L. F. (2013). Enhancing click-draw based graphical passwords using multi-touch on mobile phones. In L. J. Janczewski, H. B. Wolfe, & S. Shenoi (Eds.), Security and Privacy Protection in Information Processing Systems - 28th IFIP TC 11 International Conference, SEC 2013, Proceedings (pp. 55-68). (IFIP Advances in Information and Communication Technology; Vol. 405). Springer New York LLC. https://doi.org/10.1007/978-3-642-39218-4_5

Meng, Yuxin ; Li, Wenjuan ; Kwok, Lam For. / Enhancing click-draw based graphical passwords using multi-touch on mobile phones. Security and Privacy Protection in Information Processing Systems - 28th IFIP TC 11 International Conference, SEC 2013, Proceedings. editor / Lech J. Janczewski ; Henry B. Wolfe ; Sujeet Shenoi. Springer New York LLC, 2013. pp. 55-68 (IFIP Advances in Information and Communication Technology).

@inproceedings{5a442f950c9c426db9fbaae49b3c6488,

title = "Enhancing click-draw based graphical passwords using multi-touch on mobile phones",

abstract = "Graphical password based authentication systems are now becoming one of the potential alternatives to alleviate current over-reliance on traditional text-based password authentication. With the rapid development of mobile devices (i.e., the increase of computing power), this kind of authentication systems has been implemented on mobile phones to authenticate legitimate users and detect impostors. But in real deployment, we notice that users can utilize more actions like multi-touch on a mobile phone than on a common computer. The action of multi-touch, which refers to the process of touching a touchscreen with multiple fingers at the same time, is a distinguished feature on a touchscreen mobile phone. In this paper, we therefore attempt to explore the effect of multi-touch on creating graphical passwords in the aspect of security and usability. In particular, we conduct a study of using click-draw based graphical passwords in the evaluation, which combines current input types in the area of graphical passwords, and we further develop a multi-touch enabled scheme on mobile phones. Three experiments were conducted with 60 participants and the experimental results indicate that, by integrating the action of multi-touch, graphical passwords can be generally enhanced in the aspect of both security and usability.",

keywords = "Graphical Passwords, Human Factors, Mobile Phones, Mobile Security, Multi-Touch, User Authentication",

author = "Yuxin Meng and Wenjuan Li and Kwok, {Lam For}",

note = "Publisher Copyright: {\textcopyright} IFIP International Federation for Information Processing 2013.; 28th IFIP TC 11 International Conference, SEC 2013 ; Conference date: 08-07-2013 Through 12-07-2013",

year = "2013",

doi = "10.1007/978-3-642-39218-4_5",

language = "English",

series = "IFIP Advances in Information and Communication Technology",

publisher = "Springer New York LLC",

pages = "55--68",

editor = "Janczewski, {Lech J.} and Wolfe, {Henry B.} and Sujeet Shenoi",

booktitle = "Security and Privacy Protection in Information Processing Systems - 28th IFIP TC 11 International Conference, SEC 2013, Proceedings",

address = "United States",

}

Meng, Y, Li, W & Kwok, LF 2013, Enhancing click-draw based graphical passwords using multi-touch on mobile phones. in LJ Janczewski, HB Wolfe & S Shenoi (eds), Security and Privacy Protection in Information Processing Systems - 28th IFIP TC 11 International Conference, SEC 2013, Proceedings. IFIP Advances in Information and Communication Technology, vol. 405, Springer New York LLC, pp. 55-68, 28th IFIP TC 11 International Conference, SEC 2013, Auckland, New Zealand, 8/07/13. https://doi.org/10.1007/978-3-642-39218-4_5

Enhancing click-draw based graphical passwords using multi-touch on mobile phones. / Meng, Yuxin; Li, Wenjuan; Kwok, Lam For.

Security and Privacy Protection in Information Processing Systems - 28th IFIP TC 11 International Conference, SEC 2013, Proceedings. ed. / Lech J. Janczewski; Henry B. Wolfe; Sujeet Shenoi. Springer New York LLC, 2013. p. 55-68 (IFIP Advances in Information and Communication Technology; Vol. 405).

Research output: Chapter in book / Conference proceeding › Conference article published in proceeding or book › Academic research › peer-review

TY - GEN

T1 - Enhancing click-draw based graphical passwords using multi-touch on mobile phones

AU - Meng, Yuxin

AU - Li, Wenjuan

AU - Kwok, Lam For

N1 - Publisher Copyright: © IFIP International Federation for Information Processing 2013.

PY - 2013

Y1 - 2013

N2 - Graphical password based authentication systems are now becoming one of the potential alternatives to alleviate current over-reliance on traditional text-based password authentication. With the rapid development of mobile devices (i.e., the increase of computing power), this kind of authentication systems has been implemented on mobile phones to authenticate legitimate users and detect impostors. But in real deployment, we notice that users can utilize more actions like multi-touch on a mobile phone than on a common computer. The action of multi-touch, which refers to the process of touching a touchscreen with multiple fingers at the same time, is a distinguished feature on a touchscreen mobile phone. In this paper, we therefore attempt to explore the effect of multi-touch on creating graphical passwords in the aspect of security and usability. In particular, we conduct a study of using click-draw based graphical passwords in the evaluation, which combines current input types in the area of graphical passwords, and we further develop a multi-touch enabled scheme on mobile phones. Three experiments were conducted with 60 participants and the experimental results indicate that, by integrating the action of multi-touch, graphical passwords can be generally enhanced in the aspect of both security and usability.

AB - Graphical password based authentication systems are now becoming one of the potential alternatives to alleviate current over-reliance on traditional text-based password authentication. With the rapid development of mobile devices (i.e., the increase of computing power), this kind of authentication systems has been implemented on mobile phones to authenticate legitimate users and detect impostors. But in real deployment, we notice that users can utilize more actions like multi-touch on a mobile phone than on a common computer. The action of multi-touch, which refers to the process of touching a touchscreen with multiple fingers at the same time, is a distinguished feature on a touchscreen mobile phone. In this paper, we therefore attempt to explore the effect of multi-touch on creating graphical passwords in the aspect of security and usability. In particular, we conduct a study of using click-draw based graphical passwords in the evaluation, which combines current input types in the area of graphical passwords, and we further develop a multi-touch enabled scheme on mobile phones. Three experiments were conducted with 60 participants and the experimental results indicate that, by integrating the action of multi-touch, graphical passwords can be generally enhanced in the aspect of both security and usability.

KW - Graphical Passwords

KW - Human Factors

KW - Mobile Phones

KW - Mobile Security

KW - Multi-Touch

KW - User Authentication

UR - http://www.scopus.com/inward/record.url?scp=84920917095&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-39218-4_5

DO - 10.1007/978-3-642-39218-4_5

M3 - Conference article published in proceeding or book

AN - SCOPUS:84920917095

T3 - IFIP Advances in Information and Communication Technology

SP - 55

EP - 68

BT - Security and Privacy Protection in Information Processing Systems - 28th IFIP TC 11 International Conference, SEC 2013, Proceedings

A2 - Janczewski, Lech J.

A2 - Wolfe, Henry B.

A2 - Shenoi, Sujeet

PB - Springer New York LLC

T2 - 28th IFIP TC 11 International Conference, SEC 2013

Y2 - 8 July 2013 through 12 July 2013

ER -

Meng Y, Li W, Kwok LF. Enhancing click-draw based graphical passwords using multi-touch on mobile phones. In Janczewski LJ, Wolfe HB, Shenoi S, editors, Security and Privacy Protection in Information Processing Systems - 28th IFIP TC 11 International Conference, SEC 2013, Proceedings. Springer New York LLC. 2013. p. 55-68. (IFIP Advances in Information and Communication Technology). doi: 10.1007/978-3-642-39218-4_5

Enhancing click-draw based graphical passwords using multi-touch on mobile phones

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

More information

Other files and links

Fingerprint

Cite this