Authentication using graphical passwords: Effects of tolerance and image choice

Susan Wiedenbeck, Jim Waters, Jean Camille Birget, Alex Brodskiy, Nasir Memon

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Graphical passwords are an alternative to alphanumeric passwords in which users click on images to authenticate themselves rather than type alphanumeric strings. We have developed one such system, called PassPoints, and evaluated it with human users. The results of the evaluation were promising with respect to rmemorability of the graphical password. In this study we expand our human factors testing by studying two issues: the effect of tolerance, or margin of error, in clicking on the password points and the effect of the image used in the password system. In our tolerance study, results show that accurate memory for the password is strongly reduced when using a small tolerance (10 × 10 pixels) around the user's password points. This may occur because users fail to encode the password points in memory in the precise manner that is necessary to remember the password over a lapse of time. In our image study we compared user performance on four everyday images. The results indicate that there were few significant differences in performance of the images. This preliminary result suggests that many images may support memorability in graphical password systems.

Original languageEnglish (US)
Title of host publicationSOUPS 2005 - Proceedings of the Symposium on Usable Privacy and Security
Pages1-12
Number of pages12
Volume93
DOIs
StatePublished - 2005
EventSymposium on Usable Privacy and Security, SOUPS 2005 - Pittsburgh, PA, United States
Duration: Jul 6 2005Jul 8 2005

Other

OtherSymposium on Usable Privacy and Security, SOUPS 2005
CountryUnited States
CityPittsburgh, PA
Period7/6/057/8/05

Fingerprint

Authentication
Data storage equipment
Human engineering
Pixels
Testing

Keywords

  • Authentication
  • Graphical passwords
  • Password images
  • Tolerance

ASJC Scopus subject areas

  • Human-Computer Interaction
  • Computer Networks and Communications
  • Computer Vision and Pattern Recognition
  • Software

Cite this

Wiedenbeck, S., Waters, J., Birget, J. C., Brodskiy, A., & Memon, N. (2005). Authentication using graphical passwords: Effects of tolerance and image choice. In SOUPS 2005 - Proceedings of the Symposium on Usable Privacy and Security (Vol. 93, pp. 1-12) https://doi.org/10.1145/1073001.1073002

Authentication using graphical passwords : Effects of tolerance and image choice. / Wiedenbeck, Susan; Waters, Jim; Birget, Jean Camille; Brodskiy, Alex; Memon, Nasir.

SOUPS 2005 - Proceedings of the Symposium on Usable Privacy and Security. Vol. 93 2005. p. 1-12.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Wiedenbeck, S, Waters, J, Birget, JC, Brodskiy, A & Memon, N 2005, Authentication using graphical passwords: Effects of tolerance and image choice. in SOUPS 2005 - Proceedings of the Symposium on Usable Privacy and Security. vol. 93, pp. 1-12, Symposium on Usable Privacy and Security, SOUPS 2005, Pittsburgh, PA, United States, 7/6/05. https://doi.org/10.1145/1073001.1073002
Wiedenbeck S, Waters J, Birget JC, Brodskiy A, Memon N. Authentication using graphical passwords: Effects of tolerance and image choice. In SOUPS 2005 - Proceedings of the Symposium on Usable Privacy and Security. Vol. 93. 2005. p. 1-12 https://doi.org/10.1145/1073001.1073002
Wiedenbeck, Susan ; Waters, Jim ; Birget, Jean Camille ; Brodskiy, Alex ; Memon, Nasir. / Authentication using graphical passwords : Effects of tolerance and image choice. SOUPS 2005 - Proceedings of the Symposium on Usable Privacy and Security. Vol. 93 2005. pp. 1-12
@inproceedings{449608c6f62c43bca3b0f9aea60a7953,
title = "Authentication using graphical passwords: Effects of tolerance and image choice",
abstract = "Graphical passwords are an alternative to alphanumeric passwords in which users click on images to authenticate themselves rather than type alphanumeric strings. We have developed one such system, called PassPoints, and evaluated it with human users. The results of the evaluation were promising with respect to rmemorability of the graphical password. In this study we expand our human factors testing by studying two issues: the effect of tolerance, or margin of error, in clicking on the password points and the effect of the image used in the password system. In our tolerance study, results show that accurate memory for the password is strongly reduced when using a small tolerance (10 × 10 pixels) around the user's password points. This may occur because users fail to encode the password points in memory in the precise manner that is necessary to remember the password over a lapse of time. In our image study we compared user performance on four everyday images. The results indicate that there were few significant differences in performance of the images. This preliminary result suggests that many images may support memorability in graphical password systems.",
keywords = "Authentication, Graphical passwords, Password images, Tolerance",
author = "Susan Wiedenbeck and Jim Waters and Birget, {Jean Camille} and Alex Brodskiy and Nasir Memon",
year = "2005",
doi = "10.1145/1073001.1073002",
language = "English (US)",
isbn = "1595931783",
volume = "93",
pages = "1--12",
booktitle = "SOUPS 2005 - Proceedings of the Symposium on Usable Privacy and Security",

}

TY - GEN

T1 - Authentication using graphical passwords

T2 - Effects of tolerance and image choice

AU - Wiedenbeck, Susan

AU - Waters, Jim

AU - Birget, Jean Camille

AU - Brodskiy, Alex

AU - Memon, Nasir

PY - 2005

Y1 - 2005

N2 - Graphical passwords are an alternative to alphanumeric passwords in which users click on images to authenticate themselves rather than type alphanumeric strings. We have developed one such system, called PassPoints, and evaluated it with human users. The results of the evaluation were promising with respect to rmemorability of the graphical password. In this study we expand our human factors testing by studying two issues: the effect of tolerance, or margin of error, in clicking on the password points and the effect of the image used in the password system. In our tolerance study, results show that accurate memory for the password is strongly reduced when using a small tolerance (10 × 10 pixels) around the user's password points. This may occur because users fail to encode the password points in memory in the precise manner that is necessary to remember the password over a lapse of time. In our image study we compared user performance on four everyday images. The results indicate that there were few significant differences in performance of the images. This preliminary result suggests that many images may support memorability in graphical password systems.

AB - Graphical passwords are an alternative to alphanumeric passwords in which users click on images to authenticate themselves rather than type alphanumeric strings. We have developed one such system, called PassPoints, and evaluated it with human users. The results of the evaluation were promising with respect to rmemorability of the graphical password. In this study we expand our human factors testing by studying two issues: the effect of tolerance, or margin of error, in clicking on the password points and the effect of the image used in the password system. In our tolerance study, results show that accurate memory for the password is strongly reduced when using a small tolerance (10 × 10 pixels) around the user's password points. This may occur because users fail to encode the password points in memory in the precise manner that is necessary to remember the password over a lapse of time. In our image study we compared user performance on four everyday images. The results indicate that there were few significant differences in performance of the images. This preliminary result suggests that many images may support memorability in graphical password systems.

KW - Authentication

KW - Graphical passwords

KW - Password images

KW - Tolerance

UR - http://www.scopus.com/inward/record.url?scp=60649116908&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=60649116908&partnerID=8YFLogxK

U2 - 10.1145/1073001.1073002

DO - 10.1145/1073001.1073002

M3 - Conference contribution

AN - SCOPUS:60649116908

SN - 1595931783

SN - 9781595931788

VL - 93

SP - 1

EP - 12

BT - SOUPS 2005 - Proceedings of the Symposium on Usable Privacy and Security

ER -