Abstract
Passwords are the most common form of authentication. The password memorability problem is magnified with increasing number of systems users have to access. Graphical authentication systems (GASs) have received significant attention as one potential alternative to alphanumeric passwords to provide more usable authentication. In this paper we review all the existing work which had explored the memorability of multiple graphical passwords. The review reveals that human memory capabilities should not be overestimated and the password memorability problem remains unsolved, even when graphical passwords are employed. Hence we propose a novel graphical authentication system with certain new security features which could solve the problem. This paper will be of interest to Human Computer Interaction-Security researchers investigating approaches to usable and secure authentication techniques.
Chapter PDF
Similar content being viewed by others
References
Adams, A., Sasse, M.A.: Users are not the enemy. Communications of the ACM, 40–46 (CACM December 1999)
Florencio, D., Herley, C.: A large-scale study of web password habits. In: Proceedings of International Conference on World Wide Web (WWW 2007), pp. 657–666 (2007)
Chiasson, S., Forget, A., Stobert, E., Oorschot, P.C.: Van, and Biddle, R. Multiple Password Interference in Text and Click-Based Graphical Passwords. In: Proc. of CCS, pp. 500–511 (2009)
Chowdhury, S., Poet, R., Mackenzie, L.: A comprehensive study of the usability of multiple graphical passwords. In: Kotzé, P., Marsden, G., Lindgaard, G., Wesson, J., Winckler, M. (eds.) INTERACT 2013, Part III. LNCS, vol. 8119, pp. 424–441. Springer, Heidelberg (2013)
Davis, D., Monrose, F., Reiter, M.: On user choice in graphical password schemes. In: Proc. of the 13th conference on USENIX Security Symposium, vol. 13, USENIX Association Berkeley, CA (2004)
Dhamija, R., Perrig, A.: Deja vu: A user study using images for authentication. In: Proc. USENIX Security Symposium, pp. 45–48 (2000)
Everitt, K.M., Bragin, T., Fogarty, J., Kohno, T.: A comprehensive study of frequency, interference, and training of multiple graphical passwords. In: Proc. of CHI, pp. 889–898. ACM, New York (2009)
Moncur, W., LePlâtre, G.: Pictures at the ATM - Exploring the usability of multiple graphical passwords. In: Proc. of CHI, pp. 887–894 (2007)
Renaud, K.: Web authentication using Mikon images. In: World Congress on Privacy, Security, Trust and the Management of E-Business, pp. 1-10
Renaud, K.: On user involvement in production of images used in visual authentication. Journal of Visual Languages and Computing 92, 1–15 (2009)
Tao, H.: Pass-Go, a new graphical password scheme. M.S. thesis, School of Information Technology and Engineering, University of Ottawa (2006)
Madigan, S.: Picture Memory. In: Yuille, J. (ed.) Imagery, Memory, and Cognition: Essays in Honor of Allan Paivio. Lawrence Erlbaum Associates, Hillsdale (1983)
Tulving, E., Pearlstone, Z.: Availaibility Versus Accessibility of Information in Memory for Words. Journal of Verbal Learning and Verbal Behaviour 5, 381–391 (1966)
Baddeley, A.: Human Memory:Theory and Practice. Psychology Press, Hove (1997)
Jermyn, I., Mayer, A., Monrose, F., Reiter, M., Rubin, A.: The Design and Analysis of Graphical Passwords. In: Proceedings of 8th USENIX Security Symposium (1999)
Wolfe, M.: Guided Search 2.0 A Revised Model of Visual Search. Psychonomic Bulletin & Review 1(2), 202–238 (1994)
Szekely, A., Bates, E.: Objective Visual Complexity as a Variable in Picture Naming. In: CRL Newsletter Center for Research in Language, University of California, pp. 3–33 (2000)
Mantyla, T.: Optimising cue effectiveness. Journal of Experimental Psychology: Learning Memory and Cognition 12, 66–71 (1986)
Mathur, P.N.: Barriers to effective visual communication, 3rd edn. Media Asia (1978)
Sturken, M., Cartwright, L.: Practices of Looking: An introduction to visual culture. Oxford Press (2012)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
� 2014 Springer International Publishing Switzerland
About this paper
Cite this paper
Chowdhury, S., Poet, R., Mackenzie, L. (2014). Do Graphical Authentication Systems Solve the Password Memorability Problem?. In: Tryfonas, T., Askoxylakis, I. (eds) Human Aspects of Information Security, Privacy, and Trust. HAS 2014. Lecture Notes in Computer Science, vol 8533. Springer, Cham. https://doi.org/10.1007/978-3-319-07620-1_13
Download citation
DOI: https://doi.org/10.1007/978-3-319-07620-1_13
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-07619-5
Online ISBN: 978-3-319-07620-1
eBook Packages: Computer ScienceComputer Science (R0)