论文信息 - PassShape: stroke based shape passwords

PassShape: stroke based shape passwords

Authentication today mostly means using passwords or personal identification numbers (PINs). The average user has to remember an increasing amount of PINs and passwords. But unfortunately, humans have limited capabilities in remembering abstract alphanumeric sequences. Thus, many people either forget them or use very simple ones that imply several security risks. In our previous work on PIN entry on ATMs (cash machines), we found out that many persons support their memory recalling PINs by using an imaginary shape overlaid on the number pad. In this paper, we introduce PassShape, a shape based authentication mechanism. We argue that using shapes will allow more complex and more secure authentication with a lower cognitive load. That is, it enables people to use easy to remember but complex authentication patterns.

Heinrich Hußmann | Alexander De Luca | Roman Weiss

[1] Jeff Yan,et al. Do background images improve "draw a secret" graphical passwords? , 2007, CCS '07.

[2] Albrecht Schmidt,et al. Interacting with the Computer Using Gaze Gestures , 2007, INTERACT.

[3] Michael K. Reiter,et al. The Design and Analysis of Graphical Passwords , 1999, USENIX Security Symposium.

[4] Volker Roth,et al. A PIN-entry method resilient against shoulder surfing , 2004, CCS '04.

[5] Alexander De Luca,et al. Evaluation of eye-gaze interaction methods for security enhanced PIN-entry , 2007, OZCHI '07.

[6] Tal Garfinkel,et al. Reducing shoulder-surfing by using gaze-based password entry , 2007, SOUPS '07.

[7] Desney S. Tan,et al. Spy-resistant keyboard: more secure password entry on public touch screen displays , 2005, OZCHI.