PassGrid: Towards graph-supplemented textual shoulder surfing resistant authentication

Teng Zhou, Liang Liu, Haifeng Wang, Wenjuan Li, Chong Jiang

Research output: Chapter in book / Conference proceedingConference article published in proceeding or bookAcademic researchpeer-review

Abstract

With the rapid development of intelligent mobile devices and network applications, user authentication plays an important role to help protect people’s privacy and sensitive information. A large number of authentication textual and graphical schemes have been proposed in the literature, but the majority of them are vulnerable to shoulder surfing attacks, or have to sacrifice usability. Motivated by this challenge, we propose a graph-supplemented textual shoulder surfing resistant authentication system, called PassGrid. With a series of one-time login indicators and cyclic movable blocks with textual elements, PassGrid prevents attackers from guessing the passwords even with the help of a camera. To reduce users’ workload, they only have to memorize one set of the password. Our user study shows that PassGrid can achieve good performance regarding security and usability, i.e., average login time consumption of 22s with a small password length.

Original languageEnglish
Title of host publicationSecurity and Privacy in Social Networks and Big Data - 5th International Symposium, SocialSec 2019, Revised Selected Papers
EditorsWeizhi Meng, Steven Furnell
PublisherSpringer
Pages251-263
Number of pages13
ISBN (Print)9789811507571
DOIs
Publication statusPublished - 2019
Externally publishedYes
Event5th International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2019 - Copenhagen, Denmark
Duration: 14 Jul 201917 Jul 2019

Publication series

NameCommunications in Computer and Information Science
Volume1095 CCIS
ISSN (Print)1865-0929
ISSN (Electronic)1865-0937

Conference

Conference5th International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2019
Country/TerritoryDenmark
CityCopenhagen
Period14/07/1917/07/19

Keywords

  • Graphical authentication
  • Security and usability
  • Shoulder surfing resistant
  • Textual password
  • User authentication

ASJC Scopus subject areas

  • Computer Science(all)
  • Mathematics(all)

Cite this