A Simple Sector-Based Textual-Graphical Password Scheme with Resistance to Login-Recording Attacks

Wei-Chi KU  Bo-Ren CHENG  Yu-Chang YEH  Chia-Ju CHANG  

IEICE TRANSACTIONS on Information and Systems   Vol.E99-D   No.2   pp.529-532
Publication Date: 2016/02/01
Publicized: 2015/11/19
Online ISSN: 1745-1361
DOI: 10.1587/transinf.2015EDL8080
Type of Manuscript: LETTER
Category: Information Network
accidental login,  login-recording attack,  shoulder-surfing attack,  textual-graphical password,  

Full Text: PDF(491.5KB)>>
Buy this Article

Recently, Ku et al. proposed a sector-based graphical password scheme, RiS, with dynamically adjustable resistance to login-recording attacks. However, since most users are more familiar with textual passwords than graphical passwords, we propose a secure and efficient textual-graphical password scheme, T-RiS, which is a variant of RiS. The T-RiS user can efficiently complete the login process in an environment under low threat of login-recording attacks and securely complete the login process in an environment under high threat of login-recording attacks. T-RiS can be used in environments where the users are more familiar with passwords based on texts than passwords based on icons/images and the number of login sessions the adversary can record is usually less than five.