A new shoulder-surfing resistant password for mobile environments

Authors:
Sung-Hwan Kim;Jong-Woo Kim;Seon-Yeong Kim;Hwan-Gue Cho
Affiliations:
Pusan National University, Geumjeong-gu, Busan, Korea;Pusan National University, Geumjeong-gu, Busan, Korea;Pusan National University, Geumjeong-gu, Busan, Korea;Pusan National University, Geumjeong-gu, Busan, Korea
Venue:
Proceedings of the 5th International Conference on Ubiquitous Information Management and Communication
Year:
2011

Citing 10
Cited 0

A PIN-entry method resilient against shoulder surfing

Proceedings of the 11th ACM conference on Computer and communications security
Graphical Passwords: A Survey

ACSAC '05 Proceedings of the 21st Annual Computer Security Applications Conference
Design and evaluation of a shoulder-surfing resistant graphical password scheme

Proceedings of the working conference on Advanced visual interfaces
Dictionary attacks using keyboard acoustic emanations

Proceedings of the 13th ACM conference on Computer and communications security
The design and analysis of graphical passwords

SSYM'99 Proceedings of the 8th conference on USENIX Security Symposium - Volume 8
Reducing shoulder-surfing by using gaze-based password entry

Proceedings of the 3rd symposium on Usable privacy and security
Do background images improve "draw a secret" graphical passwords?

Proceedings of the 14th ACM conference on Computer and communications security
A comprehensive study of frequency, interference, and training of multiple graphical passwords

Proceedings of the SIGCHI Conference on Human Factors in Computing Systems
SSSL: shoulder surfing safe login

SoftCOM'09 Proceedings of the 17th international conference on Software, Telecommunications and Computer Networks
Electromagnetic eavesdropping risks of flat-panel displays

PET'04 Proceedings of the 4th international conference on Privacy Enhancing Technologies

Quantified Score

Hi-index	0.00

Visualization

Abstract

In mobile devices such as smart phones, it is important to provide adequate user authentication. Conventional text-based passwords have significant drawbacks though they are used as the most common authentication method. To address the vulnerabilities of traditional text-based passwords, graphical password schemes have been developed as possible alternative solutions. However, a potential drawback of graphical password schemes is that they are more vulnerable to shoulder-surfing than conventional text-based passwords. In this paper, we present a new shoulder-surfing resistant password. Our approach makes it difficult for attackers to observe a user's password by requiring the user to locate his or her password in the given password grid instead of entering the password (Figure 1). Security analysis for shoulder-surfing attacks shows that our password is robust against both random and shoulder-surfing attacks.