My Personal Images as My Graphical Password

In 1996, Blonder introduced the first authentication system based on a graphical password. Since then, researchers have proposed several systems in the literature enhancing security properties to prevent brute-force, guessing, and shoulder-surfing attacks. However, many systems were developed using...

Descripción completa

Detalles Bibliográficos
Autores: Pablo Abraham Sosa Valles, Javier Gerardo Villalobos Serrano, Rafael Martinez Pelaez, Jorge Ramon Parra Michel, Pablo Velarde Alvarado, Luis Mena, Vicente Garcia
Tipo de recurso: artículo
Estado:Versión publicada
Fecha de publicación:2018
País:México
Institución:Universidad Autónoma de Ciudad Juárez
Repositorio:Repositorio Institucional de la Universidad Autónoma de Ciudad Juárez
OAI Identifier:oai:uacj.mx:oai:cathi.uacj.mx:20.500.11961ir-3791
Acceso en línea:https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=8408449&tag=1
Access Level:acceso abierto
Palabra clave:authentication
electronic services
image-based
observation
usable security
info:eu-repo/classification/cti/7
Descripción
Sumario:In 1996, Blonder introduced the first authentication system based on a graphical password. Since then, researchers have proposed several systems in the literature enhancing security properties to prevent brute-force, guessing, and shoulder-surfing attacks. However, many systems were developed using impersonal images, hindering their identification and retention. As a solution, Takada-Toike, and Herzberg-Margulies introduced systems using personal images in 2002 and 2012, respectively. Nonetheless, users require passing many stages during the authentication phase, making the systems unsecured. As a solution, we propose a system where each user creates a graphical personal password and needs to pass a stage. Security analysis demonstrates that the proposal can resist very well-known attacks, making it secure and useful for web services.