Using personal photos as pictorial passwords
CHI '05 Extended Abstracts on Human Factors in Computing Systems
A large-scale study of web password habits
Proceedings of the 16th international conference on World Wide Web
A security assessment of tiles: a new portfolio-based graphical authentication system
CHI '12 Extended Abstracts on Human Factors in Computing Systems
WYSWYE: shoulder surfing defense for recognition based graphical passwords
Proceedings of the 24th Australian Computer-Human Interaction Conference
On automated image choice for secure and usable graphical passwords
Proceedings of the 28th Annual Computer Security Applications Conference
Hi-index | 0.00 |
Previous research had shown that pictorial passwords, where users recognize their target images among distractors, have potential for improving the usability of authentication systems. A method using personal photos provided by the users as their targets, shown among highly similar distractors, showed the most promise for both accuracy and security. But the longest time period that had been tested between successive login attempts was only about one month. We wanted to see what happens when six years have elapsed. We recruited some of the same participants from the previous study and tested their ability to select their target photos six years later. We found that 12 of 13 participants successfully authenticated themselves. The overall accuracy rate was 95.6%, demonstrating that most users can remember these pictorial passwords even over long periods of time.