Browse > Article
http://dx.doi.org/10.9708/jksci.2015.20.1.119

Password-based user authentication scheme using a dual-display method  

Yong, Seung-Lim (Dept. of Computer systems and engineering, Inha technical college)
Publication Information
Journal of the Korea Society of Computer and Information / v.20, no.1, 2015 , pp. 119-125 More about this Journal
Abstract
In this paper, we propose a user friendly password input method for mobile devices which is secure against SSA. The proposed method is a numeric password input method such as a conventional PIN method. One of the buttons, numbers and colors, so as to display the two pieces of information to double. The user can select one of the colors or numbers within one button to type in the password. Because an attacker does not know whether the user has entered any color and number, the proposed technique is safe from the SSA. Also to be secure for smudge attacks and password guessing attacks through random changes in the number and color information.
Keywords
Password; Double display; User authentication;
Citations & Related Records
연도 인용수 순위
  • Reference
1 M. G. Kuhn, "Electromagnetic evesdropping risks of flat-panel displays," Proceeding of the 4th Workshop on Privacy Enhancing Technologies, pp.23-25, 2004.
2 S. Wiedenbeck, J.Water, L.Sobrado, and J. Birget, " Design and evaluation of a shoulder-surfing resistant graphical password scheme," Proceeding of the Advanced Visual Interfaces, pp. 177-184, 2006.
3 A. J. Aviv, et al., "Smudge Attacks on Smartphone Touch Screens," Proceedings of the 4th USENIX conference on Offensive technologies, 2010.
4 F.Tari, A. Ozol and S.H.Holden, "A comparison of perceived and real shoulder-surfing risks between alphanumeric and graphical passwords," Proceeding of the second symposium on usable privacy and security, 2006.
5 V. Roth, K. Richter, and R. Freidinger, "A PIN-entry method resilient against shoulder surfing," Proceedings of ACM Conf. Computer Communication and Security, pp. 236-245, 2004.
6 M-K. Lee, "Security notions and advanced method for human shoulder-surfing resistant PIN-entry," IEEE Transactions on Information Forensics and Security, vol. 9, no. 4, pp.695-708, Apr. 2014.   DOI   ScienceOn
7 A. D. Luca, K. Hertzshuch, and H. Hussmann, "ColorPin-securing PIN Entry through indirect input", International Conference on Human Factors in Computing Systems, pp. 1103-1106, 2010.
8 G. E. Blonder, "Graphical passwords", United States Patent 5559961, 1996.
9 Paul Dunphy, James Nicholson and Patrick Olivier, Securing passfaces for description, Proceedings of the 4th symposium on Usable privacy and security, 2008.
10 Jermyn, I., Mayer A., Monrose, F., Reiter, M., and Rubin, "The design and analysis of graphical passwords", Proceedings of USENIX Security Symposium, 1999.
11 H. Zhao and X. Li, "S3PAS: A Scalable Shoulder-Surfing Resistant Textual-Graphical Password Authentication Scheme," Proceedings. of 21st international Conference on Advanced Information Networking and Applications Workshops, 2007
12 Y. Berger, A. Wool, and A. Yeredor, "Dictionary attacks using keyboard acoustic emanations," Proceeding of the 13th ACM Conf. on Computer and Communications Security, pp.245-254, 2006.