In 2014, we launched our open-access repository which offers full text access to conference proceedings from many of our events including the INC and HAISA series. These papers are free to access and distribute (subject to citing the source).
Eighth International Symposium on Human Aspects of Information Security & Assurance (HAISA 2014)
Title: Modelling the Security of Recognition-Based Graphical Passwords
Author(s): Rosanne English
Keywords: graphical passwords, authentication, metric
Abstract: Recognition-based graphical passwords have received attention in recent research as an alternative authentication mechanism. The research often presents new schemes, usability studies or proposes countermeasures for specific attacks. Whilst this is beneficial, it does not allow for consistent comparison of the security of recognition-based graphical password schemes. This paper contributes a proposed solution to this problem. Presented here are mathematical models for estimating the number of attacks required before success for four attack types. These models combine to provide an overall metric of the security of recognition-based graphical password schemes. The metric presented provides a consistent, repeatable, and quantitative method for comparing recognition-based graphical password schemes which was previously not possible.
Download count: 1272
How to get this paper:
PDF copy of this paper is free to download. You may distribute this copy providing you cite this page as the source.