TY - JOUR
T1 - Towards enhancing click-draw based graphical passwords using multi-touch behaviours on smartphones
AU - Meng, Weizhi
AU - Li, Wenjuan
AU - Kwok, Lam For
AU - Choo, Kim Kwang Raymond
N1 - Funding Information:
We would like to thank all participants for their hard work in the user study, and all anonymous reviewers for their helpful comments in improving this paper. The work was partially funded by the Innovation to Realization Funding Scheme of the City University of Hong Kong (under the project number 6351018 ). The data were available on request.
Publisher Copyright:
© 2016 Elsevier Ltd
PY - 2017/3/1
Y1 - 2017/3/1
N2 - Graphical passwords (GPs) are recognised as one of the potential alternatives in addressing the limitations in conventional text-based password authentication. With the rapid development of mobile devices (i.e., the increase of computing power), GP-based systems have already been implemented not only on PCs, but also on smartphones to authenticate legitimate users and detect impostors. However, as compared to common computers, we identify that users are able to perform some distinct actions like multi-touch on smartphones. The multi-touch is a distinguished feature on current smartphones and its impact on graphical password creation is an important topic in the literature. In this paper, our interest is to investigate the influence of multi-touch behaviours on users’ habit in creating graphical passwords, especially on click-draw based GPs (shortly CD-GPS) on mobile devices. In the evaluation, we develop a multi-touch enabled CD-GPS on smartphones and conduct two major experiments with a total of 90 participants. The study results indicate that participants are more likely to use multi-touch features to create their secrets, and multi-touch can make a positive impact on creating graphical passwords (i.e., offering higher success rates and less time consumption).
AB - Graphical passwords (GPs) are recognised as one of the potential alternatives in addressing the limitations in conventional text-based password authentication. With the rapid development of mobile devices (i.e., the increase of computing power), GP-based systems have already been implemented not only on PCs, but also on smartphones to authenticate legitimate users and detect impostors. However, as compared to common computers, we identify that users are able to perform some distinct actions like multi-touch on smartphones. The multi-touch is a distinguished feature on current smartphones and its impact on graphical password creation is an important topic in the literature. In this paper, our interest is to investigate the influence of multi-touch behaviours on users’ habit in creating graphical passwords, especially on click-draw based GPs (shortly CD-GPS) on mobile devices. In the evaluation, we develop a multi-touch enabled CD-GPS on smartphones and conduct two major experiments with a total of 90 participants. The study results indicate that participants are more likely to use multi-touch features to create their secrets, and multi-touch can make a positive impact on creating graphical passwords (i.e., offering higher success rates and less time consumption).
KW - Graphical passwords
KW - Human factors
KW - Mobile security
KW - Multi-touch
KW - User authentication on smartphones
UR - http://www.scopus.com/inward/record.url?scp=85003040394&partnerID=8YFLogxK
U2 - 10.1016/j.cose.2016.11.010
DO - 10.1016/j.cose.2016.11.010
M3 - Journal article
AN - SCOPUS:85003040394
SN - 0167-4048
VL - 65
SP - 213
EP - 229
JO - Computers and Security
JF - Computers and Security
ER -