TwoStep: An Authentication Method Combining Text and Graphical Passwords

نویسندگان

Paul C. van Oorschot

Tao Wan

چکیده

Text-based passwords alone are subject to dictionary attacks as users tend to choose weak passwords in favor of memorability, as well as phishing attacks. Many recognition-based graphical password schemes alone, in order to offer sufficient security, require a number of rounds of verification, introducing usability issues. We suggest a hybrid user authentication approach combining text passwords, recognition-based graphical passwords, and a two-step process, to provide increased security with fewer rounds than such graphical passwords alone. A variation of this two-step authentication method, which we have implemented and deployed, is in use in the real world.

برای دانلود رایگان متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

Network Security: Authentication using Mixed Mode Approach

Text passwords have been widely used for user authentication, e.g., by almost all websites on the Internet. However, it is well-known that text passwords are insecure for a variety of reasons. For example, users tend to choose simple passwords which can be remembered easily. in favour of memorability, making them subject to dictionary attacks; and text passwords can be stolen by malicious softw...

متن کامل

Authentication Mechanisim For Session Passwords By Imposing Color With Text

The most common method used for authentication is Textual passwords. But textual passwords are in risk to eves dropping, dictionary attacks, social engineering and shoulder surfing. Graphical passwords are introduced as alternative techniques to textual passwords. Most of the graphical schemes are helpless to shoulder surfing. To address this problem, text can be combined with images or colors ...

متن کامل

Review on Color Password to Resist Shoulder Surfing Attack

Since conventional password schemes are vulnerable to shoulder surfing, many shoulder surfing resistant graphical password schemes have been proposed. However, as most users are more familiar with textual passwords than pure graphical passwords, text-based graphical password schemes have been proposed. Unfortunately, both the text-based password schemes and graphical password schemes are not se...

متن کامل

Authentication Schemes for Session Passwords using Color and Images

Textual passwords are the most common method used for authentication. But textual passwords are vulnerable to eves dropping, dictionary attacks, social engineering and shoulder surfing. Graphical passwords are introduced as alternative techniques to textual passwords. Most of the graphical schemes are vulnerable to shoulder surfing. To address this problem, text can be combined with images or c...

متن کامل

A Novel Multifactor Authentication System Ensuring Usability and Security

User authentication is one of the most important part of information security. Computer security most commonly depends on passwords to authenticate human users. Password authentication systems will be either been usable but not secure, or secure but not usable. While there are different types of authentication systems available alphanumeric password is the most commonly used authentication mech...

متن کامل

ذخیره در منابع من

ذخیره در منابع من قبلا به منابع من ذحیره شده

{@ msg_add @}

با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

عنوان ژورنال:

دوره شماره

صفحات -

تاریخ انتشار 2009

TwoStep: An Authentication Method Combining Text and Graphical Passwords

نویسندگان

چکیده

منابع مشابه

Network Security: Authentication using Mixed Mode Approach

Authentication Mechanisim For Session Passwords By Imposing Color With Text

Review on Color Password to Resist Shoulder Surfing Attack

Authentication Schemes for Session Passwords using Color and Images

A Novel Multifactor Authentication System Ensuring Usability and Security

عنوان ژورنال:

اشتراک گذاری