PassGrid: Towards graph-supplemented textual shoulder surfing resistant authentication

Teng Zhou; Liang Liu; Haifeng Wang; Wenjuan Li; Chong Jiang

doi:10.1007/978-981-15-0758-8_19

PassGrid: Towards graph-supplemented textual shoulder surfing resistant authentication

Teng Zhou, Liang Liu, Haifeng Wang, Wenjuan Li, Chong Jiang

Research output: Chapter in book / Conference proceeding › Conference article published in proceeding or book › Academic research › peer-review

1 Citation (Scopus)

Abstract

With the rapid development of intelligent mobile devices and network applications, user authentication plays an important role to help protect people’s privacy and sensitive information. A large number of authentication textual and graphical schemes have been proposed in the literature, but the majority of them are vulnerable to shoulder surfing attacks, or have to sacrifice usability. Motivated by this challenge, we propose a graph-supplemented textual shoulder surfing resistant authentication system, called PassGrid. With a series of one-time login indicators and cyclic movable blocks with textual elements, PassGrid prevents attackers from guessing the passwords even with the help of a camera. To reduce users’ workload, they only have to memorize one set of the password. Our user study shows that PassGrid can achieve good performance regarding security and usability, i.e., average login time consumption of 22s with a small password length.

Original language	English
Title of host publication	Security and Privacy in Social Networks and Big Data - 5th International Symposium, SocialSec 2019, Revised Selected Papers
Editors	Weizhi Meng, Steven Furnell
Publisher	Springer
Pages	251-263
Number of pages	13
ISBN (Print)	9789811507571
DOIs	https://doi.org/10.1007/978-981-15-0758-8_19
Publication status	Published - 2019
Externally published	Yes
Event	5th International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2019 - Copenhagen, Denmark Duration: 14 Jul 2019 → 17 Jul 2019

Publication series

Name	Communications in Computer and Information Science
Volume	1095 CCIS
ISSN (Print)	1865-0929
ISSN (Electronic)	1865-0937

Conference

Conference	5th International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2019
Country/Territory	Denmark
City	Copenhagen
Period	14/07/19 → 17/07/19

Keywords

Graphical authentication
Security and usability
Shoulder surfing resistant
Textual password
User authentication

ASJC Scopus subject areas

Computer Science(all)
Mathematics(all)

More information

10.1007/978-981-15-0758-8_19

Cite this

Zhou, T., Liu, L., Wang, H., Li, W., & Jiang, C. (2019). PassGrid: Towards graph-supplemented textual shoulder surfing resistant authentication. In W. Meng, & S. Furnell (Eds.), Security and Privacy in Social Networks and Big Data - 5th International Symposium, SocialSec 2019, Revised Selected Papers (pp. 251-263). (Communications in Computer and Information Science; Vol. 1095 CCIS). Springer. https://doi.org/10.1007/978-981-15-0758-8_19

Zhou, Teng ; Liu, Liang ; Wang, Haifeng et al. / PassGrid: Towards graph-supplemented textual shoulder surfing resistant authentication. Security and Privacy in Social Networks and Big Data - 5th International Symposium, SocialSec 2019, Revised Selected Papers. editor / Weizhi Meng ; Steven Furnell. Springer, 2019. pp. 251-263 (Communications in Computer and Information Science).

@inproceedings{49ed9eafab684b3e9684d7ee25104b8c,

title = "PassGrid: Towards graph-supplemented textual shoulder surfing resistant authentication",

abstract = "With the rapid development of intelligent mobile devices and network applications, user authentication plays an important role to help protect people{\textquoteright}s privacy and sensitive information. A large number of authentication textual and graphical schemes have been proposed in the literature, but the majority of them are vulnerable to shoulder surfing attacks, or have to sacrifice usability. Motivated by this challenge, we propose a graph-supplemented textual shoulder surfing resistant authentication system, called PassGrid. With a series of one-time login indicators and cyclic movable blocks with textual elements, PassGrid prevents attackers from guessing the passwords even with the help of a camera. To reduce users{\textquoteright} workload, they only have to memorize one set of the password. Our user study shows that PassGrid can achieve good performance regarding security and usability, i.e., average login time consumption of 22s with a small password length.",

keywords = "Graphical authentication, Security and usability, Shoulder surfing resistant, Textual password, User authentication",

author = "Teng Zhou and Liang Liu and Haifeng Wang and Wenjuan Li and Chong Jiang",

note = "Publisher Copyright: {\textcopyright} Springer Nature Singapore Pte Ltd. 2019.; 5th International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2019 ; Conference date: 14-07-2019 Through 17-07-2019",

year = "2019",

doi = "10.1007/978-981-15-0758-8_19",

language = "English",

isbn = "9789811507571",

series = "Communications in Computer and Information Science",

publisher = "Springer",

pages = "251--263",

editor = "Weizhi Meng and Steven Furnell",

booktitle = "Security and Privacy in Social Networks and Big Data - 5th International Symposium, SocialSec 2019, Revised Selected Papers",

}

Zhou, T, Liu, L, Wang, H, Li, W & Jiang, C 2019, PassGrid: Towards graph-supplemented textual shoulder surfing resistant authentication. in W Meng & S Furnell (eds), Security and Privacy in Social Networks and Big Data - 5th International Symposium, SocialSec 2019, Revised Selected Papers. Communications in Computer and Information Science, vol. 1095 CCIS, Springer, pp. 251-263, 5th International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2019, Copenhagen, Denmark, 14/07/19. https://doi.org/10.1007/978-981-15-0758-8_19

PassGrid: Towards graph-supplemented textual shoulder surfing resistant authentication. / Zhou, Teng; Liu, Liang; Wang, Haifeng et al.
Security and Privacy in Social Networks and Big Data - 5th International Symposium, SocialSec 2019, Revised Selected Papers. ed. / Weizhi Meng; Steven Furnell. Springer, 2019. p. 251-263 (Communications in Computer and Information Science; Vol. 1095 CCIS).

Research output: Chapter in book / Conference proceeding › Conference article published in proceeding or book › Academic research › peer-review

TY - GEN

T1 - PassGrid: Towards graph-supplemented textual shoulder surfing resistant authentication

AU - Zhou, Teng

AU - Liu, Liang

AU - Wang, Haifeng

AU - Li, Wenjuan

AU - Jiang, Chong

N1 - Publisher Copyright: © Springer Nature Singapore Pte Ltd. 2019.

PY - 2019

Y1 - 2019

N2 - With the rapid development of intelligent mobile devices and network applications, user authentication plays an important role to help protect people’s privacy and sensitive information. A large number of authentication textual and graphical schemes have been proposed in the literature, but the majority of them are vulnerable to shoulder surfing attacks, or have to sacrifice usability. Motivated by this challenge, we propose a graph-supplemented textual shoulder surfing resistant authentication system, called PassGrid. With a series of one-time login indicators and cyclic movable blocks with textual elements, PassGrid prevents attackers from guessing the passwords even with the help of a camera. To reduce users’ workload, they only have to memorize one set of the password. Our user study shows that PassGrid can achieve good performance regarding security and usability, i.e., average login time consumption of 22s with a small password length.

AB - With the rapid development of intelligent mobile devices and network applications, user authentication plays an important role to help protect people’s privacy and sensitive information. A large number of authentication textual and graphical schemes have been proposed in the literature, but the majority of them are vulnerable to shoulder surfing attacks, or have to sacrifice usability. Motivated by this challenge, we propose a graph-supplemented textual shoulder surfing resistant authentication system, called PassGrid. With a series of one-time login indicators and cyclic movable blocks with textual elements, PassGrid prevents attackers from guessing the passwords even with the help of a camera. To reduce users’ workload, they only have to memorize one set of the password. Our user study shows that PassGrid can achieve good performance regarding security and usability, i.e., average login time consumption of 22s with a small password length.

KW - Graphical authentication

KW - Security and usability

KW - Shoulder surfing resistant

KW - Textual password

KW - User authentication

UR - http://www.scopus.com/inward/record.url?scp=85076220504&partnerID=8YFLogxK

U2 - 10.1007/978-981-15-0758-8_19

DO - 10.1007/978-981-15-0758-8_19

M3 - Conference article published in proceeding or book

AN - SCOPUS:85076220504

SN - 9789811507571

T3 - Communications in Computer and Information Science

SP - 251

EP - 263

BT - Security and Privacy in Social Networks and Big Data - 5th International Symposium, SocialSec 2019, Revised Selected Papers

A2 - Meng, Weizhi

A2 - Furnell, Steven

PB - Springer

T2 - 5th International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2019

Y2 - 14 July 2019 through 17 July 2019

ER -

Zhou T, Liu L, Wang H, Li W, Jiang C. PassGrid: Towards graph-supplemented textual shoulder surfing resistant authentication. In Meng W, Furnell S, editors, Security and Privacy in Social Networks and Big Data - 5th International Symposium, SocialSec 2019, Revised Selected Papers. Springer. 2019. p. 251-263. (Communications in Computer and Information Science). doi: 10.1007/978-981-15-0758-8_19

PassGrid: Towards graph-supplemented textual shoulder surfing resistant authentication

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

More information

Other files and links

Fingerprint

Cite this