Document Type
Article
Publication Date
9-28-2018
Publication Title
IEEE Access
Abstract
It has long been recognized, by both security researchers and human-computer interaction researchers, that no silver bullet for authentication exists to achieve security, usability, and memorability. Aiming to achieve the goals, we propose a Multi-fAcet Password Scheme (MAPS) for mobile authentication. MAPS fuses information from multiple facets to form a password, allowing MAPS to enlarge the password space and improve memorability by reducing memory interference, which impairs memory performance according to psychology interference theory. The information fusion in MAPS can increase usability, as fewer input gestures are required for passwords of the same security strength. Based on the idea of MAPS, we implement a Chess-based MAPS (CMAPS) for Android systems. Only two and six gestures are required for CMAPS to generate passwords with better security strength than 4-digit PINs and 8-character alphanumeric passwords, respectively. Our user studies show that CMAPS can achieve high recall rates while exceeding the security strength of standard 8-character alphanumeric passwords used for secure applications.
Repository Citation
Zhu, Ye; Gurary, Jonathan; Corser, George; Oluoch, Jared; Alnahash, Nahed; Fu, Huirong; and Tang, Junhua, "CMAPS: A Chess-Based Multi-Facet Password Scheme for Mobile Devices" (2018). Electrical and Computer Engineering Faculty Publications. 434.
https://engagedscholarship.csuohio.edu/enece_facpub/434
DOI
10.1109/ACCESS.2018.2872772
Version
Publisher's PDF
Volume
6
Comments
This work was supported in part by the Faculty Development Award from Cleveland State University and in part by the U.S. National Science Foundation under Grant CNS-1338105, Grant CNS-1343141, Grant CNS-1460897, Grant DGE-1623713, and Grant DGE-1821775.