CCBS – a method to maintain memorability, accuracy of password submission and the effective password space in click-based visual passwords

2.50
Hdl Handle:
http://hdl.handle.net/10547/596571
Title:
CCBS – a method to maintain memorability, accuracy of password submission and the effective password space in click-based visual passwords
Authors:
al-Khateeb, Haider; Maple, Carsten
Abstract:
Text passwords are vulnerable to many security attacks due to a number of reasons such as the insecure practices of end users who select weak passwords to maintain their long term memory. As such, visual password (VP) solutions were developed to maintain the security and usability of user authentication in collaborative systems. This paper focuses on the challenges facing click-based visual password systems and proposes a novel method in response to them. For instance, Hotspots reveal a serious vulnerability. They occur because users are attracted to specific parts of an image and neglect other areas. Undertaking image analysis to identify these high probability areas can assist dictionary attacks. Another concern is that click-based systems do not guide users towards the correct click-point they are aiming to select. For instance, users might recall the correct spot or area but still fail to include their click within the tolerance distance around the original click-point which results in more incorrect password submissions. Nevertheless, the Passpoints study by Wiedenbeck et al., 2005 inspected the retention of their VP in comparison with text passwords over the long term. Despite being cued-recall the successful rate of their VP submission was not superior to text passwords as it decreased from 85% (the instant retention on the day of registration) to 55% after 2 weeks. This result was identical to that of the text password in the same experiment. The successful submission rates after 6 weeks were also 55% for both VP and text passwords. This paper addresses these issues, and then presents a novel method (CCBS) as a usable solution supported by an empirical proof. A user study is conducted and the results are evaluated against a comparative study.
Affiliation:
University of Bedfordshire
Citation:
al-Khateeb, H. M., Maple, C. (2011) ‘CCBS – A Method to Maintain Memorability, Accuracy of Password Submission and The Effective Password Space in Click-Based Visual Passwords’, IADIS International Workshop on the Transgressive Uses of Collaborative Systems 2011 (TUCS 2011), MCCSIS, 20-26 July, Rome, Italy
Publisher:
IADIS
Issue Date:
Jul-2011
URI:
http://hdl.handle.net/10547/596571
DOI:
10.13140/RG.2.1.2561.6485
Type:
Conference papers, meetings and proceedings
Language:
en
ISBN:
978-972-8939-40-3 © 2011 IADIS
Appears in Collections:
Centre for Research in Distributed Technologies (CREDIT)

Full metadata record

DC FieldValue Language
dc.contributor.authoral-Khateeb, Haideren
dc.contributor.authorMaple, Carstenen
dc.date.accessioned2016-02-18T09:11:00Zen
dc.date.available2016-02-18T09:11:00Zen
dc.date.issued2011-07en
dc.identifier.citational-Khateeb, H. M., Maple, C. (2011) ‘CCBS – A Method to Maintain Memorability, Accuracy of Password Submission and The Effective Password Space in Click-Based Visual Passwords’, IADIS International Workshop on the Transgressive Uses of Collaborative Systems 2011 (TUCS 2011), MCCSIS, 20-26 July, Rome, Italyen
dc.identifier.isbn978-972-8939-40-3 © 2011 IADISen
dc.identifier.doi10.13140/RG.2.1.2561.6485en
dc.identifier.urihttp://hdl.handle.net/10547/596571en
dc.description.abstractText passwords are vulnerable to many security attacks due to a number of reasons such as the insecure practices of end users who select weak passwords to maintain their long term memory. As such, visual password (VP) solutions were developed to maintain the security and usability of user authentication in collaborative systems. This paper focuses on the challenges facing click-based visual password systems and proposes a novel method in response to them. For instance, Hotspots reveal a serious vulnerability. They occur because users are attracted to specific parts of an image and neglect other areas. Undertaking image analysis to identify these high probability areas can assist dictionary attacks. Another concern is that click-based systems do not guide users towards the correct click-point they are aiming to select. For instance, users might recall the correct spot or area but still fail to include their click within the tolerance distance around the original click-point which results in more incorrect password submissions. Nevertheless, the Passpoints study by Wiedenbeck et al., 2005 inspected the retention of their VP in comparison with text passwords over the long term. Despite being cued-recall the successful rate of their VP submission was not superior to text passwords as it decreased from 85% (the instant retention on the day of registration) to 55% after 2 weeks. This result was identical to that of the text password in the same experiment. The successful submission rates after 6 weeks were also 55% for both VP and text passwords. This paper addresses these issues, and then presents a novel method (CCBS) as a usable solution supported by an empirical proof. A user study is conducted and the results are evaluated against a comparative study.en
dc.language.isoenen
dc.publisherIADISen
dc.subjectauthenticationen
dc.subjectvisual passworden
dc.subjectclick-based systemsen
dc.subjectgraphical passworden
dc.subjectpassword spaceen
dc.titleCCBS – a method to maintain memorability, accuracy of password submission and the effective password space in click-based visual passwordsen
dc.typeConference papers, meetings and proceedingsen
dc.contributor.departmentUniversity of Bedfordshireen
This item is licensed under a Creative Commons License
Creative Commons
All Items in UOBREP are protected by copyright, with all rights reserved, unless otherwise indicated.