Since most password schemes are vulnerable to login-recording attacks, graphical password schemes that are resistant to such attacks have been proposed. However, none of existing graphical password schemes with resistance to login-recording attacks can provide both sufficient security and good usability. Herein, we design and implement a simple sector-based graphical password scheme, RiS, with dynamically adjustable resistance to login-recording attacks. RiS is a pure graphical password scheme by using the shape of the sector. In RiS, the user can dynamically choose the login mode with suitable resistance to login-recording attacks depending on the login environment. Hence, the user can efficiently complete the login process in an environment under low threat of login-recording attacks and securely complete the login process in an environment under high threat of login-recording attacks. Finally, we show that RiS can achieve both sufficient security and good usability.
Wei-Chi KU
National Taichung University of Education
Yu-Chang YEH
National Taichung University of Education
Bo-Ren CHENG
National Taichung University of Education
Chia-Ju CHANG
National Taichung University of Education
The copyright of the original papers published on this site belongs to IEICE. Unauthorized use of the original or translated papers is prohibited. See IEICE Provisions on Copyright for details.
Copy
Wei-Chi KU, Yu-Chang YEH, Bo-Ren CHENG, Chia-Ju CHANG, "A Sector-Based Graphical Password Scheme with Resistance to Login-Recording Attacks" in IEICE TRANSACTIONS on Information,
vol. E98-D, no. 4, pp. 894-901, April 2015, doi: 10.1587/transinf.2014EDP7302.
Abstract: Since most password schemes are vulnerable to login-recording attacks, graphical password schemes that are resistant to such attacks have been proposed. However, none of existing graphical password schemes with resistance to login-recording attacks can provide both sufficient security and good usability. Herein, we design and implement a simple sector-based graphical password scheme, RiS, with dynamically adjustable resistance to login-recording attacks. RiS is a pure graphical password scheme by using the shape of the sector. In RiS, the user can dynamically choose the login mode with suitable resistance to login-recording attacks depending on the login environment. Hence, the user can efficiently complete the login process in an environment under low threat of login-recording attacks and securely complete the login process in an environment under high threat of login-recording attacks. Finally, we show that RiS can achieve both sufficient security and good usability.
URL: https://global.ieice.org/en_transactions/information/10.1587/transinf.2014EDP7302/_p
Copy
@ARTICLE{e98-d_4_894,
author={Wei-Chi KU, Yu-Chang YEH, Bo-Ren CHENG, Chia-Ju CHANG, },
journal={IEICE TRANSACTIONS on Information},
title={A Sector-Based Graphical Password Scheme with Resistance to Login-Recording Attacks},
year={2015},
volume={E98-D},
number={4},
pages={894-901},
abstract={Since most password schemes are vulnerable to login-recording attacks, graphical password schemes that are resistant to such attacks have been proposed. However, none of existing graphical password schemes with resistance to login-recording attacks can provide both sufficient security and good usability. Herein, we design and implement a simple sector-based graphical password scheme, RiS, with dynamically adjustable resistance to login-recording attacks. RiS is a pure graphical password scheme by using the shape of the sector. In RiS, the user can dynamically choose the login mode with suitable resistance to login-recording attacks depending on the login environment. Hence, the user can efficiently complete the login process in an environment under low threat of login-recording attacks and securely complete the login process in an environment under high threat of login-recording attacks. Finally, we show that RiS can achieve both sufficient security and good usability.},
keywords={},
doi={10.1587/transinf.2014EDP7302},
ISSN={1745-1361},
month={April},}
Copy
TY - JOUR
TI - A Sector-Based Graphical Password Scheme with Resistance to Login-Recording Attacks
T2 - IEICE TRANSACTIONS on Information
SP - 894
EP - 901
AU - Wei-Chi KU
AU - Yu-Chang YEH
AU - Bo-Ren CHENG
AU - Chia-Ju CHANG
PY - 2015
DO - 10.1587/transinf.2014EDP7302
JO - IEICE TRANSACTIONS on Information
SN - 1745-1361
VL - E98-D
IS - 4
JA - IEICE TRANSACTIONS on Information
Y1 - April 2015
AB - Since most password schemes are vulnerable to login-recording attacks, graphical password schemes that are resistant to such attacks have been proposed. However, none of existing graphical password schemes with resistance to login-recording attacks can provide both sufficient security and good usability. Herein, we design and implement a simple sector-based graphical password scheme, RiS, with dynamically adjustable resistance to login-recording attacks. RiS is a pure graphical password scheme by using the shape of the sector. In RiS, the user can dynamically choose the login mode with suitable resistance to login-recording attacks depending on the login environment. Hence, the user can efficiently complete the login process in an environment under low threat of login-recording attacks and securely complete the login process in an environment under high threat of login-recording attacks. Finally, we show that RiS can achieve both sufficient security and good usability.
ER -