Category-Based Graphical User Authentication (CGUA) Scheme for Web Application

Osman, Mohd Zamri; Ithnin, Norafida

doi:10.1007/978-3-319-17398-6_29

Cited by 2 publications

(3 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…So, a graphical password is sometimes called Graphical User Authentication (GUA) [5]. GUI produced by the system During the Authentication process, the user must recognize the selection he previously selected during the registration step [1,[6][7][8][9][10]. In the second type, pure recall-based, the user must produce his graphical password, which he generated in the registration phase.…”

Section: Related Workmentioning

confidence: 99%

“…In this case, unlike the previous type, the user needs to reproduce his password without any given reminder, Such as drawing a particular shape. In contrast, in cued recall-based systems, several specific locations within an image can be selected as the graphical password [9,[11][12][13]. There are many examples of GP techniques.…”

Section: Related Workmentioning

confidence: 99%

“…The Pass-Face technique is a weak GP as it has a short password space, but it is nearly the most preferred GP from users as the faces can be remembered easily compared to other images [19], so we used it in our comparison to prove our CGP usability and memorability. The cued recall is less usable than recognitions, but it's more secure because of its strength and large password space [1,3,9,18,19,22]. So, we used a recall technique by S. Gokhalea [16] to prove our CGP security compared with the recall techniques and Vaddeti [17] as a recognition technique.…”

Section: Related Workmentioning

confidence: 99%

See 2 more Smart Citations

Choice-Based Graphical Password (CGP) Scheme for web applications

Seksak,

Amin,

Zarif

2023

IJCI. International Journal of Computers and Information

View full text Add to dashboard Cite

Today Authentication is an essential mechanism in information security. It was used to identify authorized users and safeguard systems against hackers and spies. A graphical password (GP) is a password that employs graphics rather than text to gain access to computers. The GP is still not widely used in the actual world because users are frustrated by the numerous Login phases and the selection of various determined images from prior techniques, therefore they have returned to textual passwords. The vast majority of research has failed to discover a means to increase overall security, usability, memorability, and login time. In this paper, a novel Choice-Based Graphical Password (CGP) Scheme for Web Applications is proposed. The scheme is a two-level multifactor authentication: textual and recognition. During registration, the user first registered his/her data, and then the system assigned him/her a random and unique number. The second, user chose an image from CGP's dataset or from his/her device. CGP then resized and blurred the user-selected image before encrypting and storing it in the CGP database. The attacker claimed that the image was one element, but it was a combination of five factors (user name, user number, and his/her registered image with the same name, size, and resolution), making it difficult to guess and resistant to several attacks using The Common Attack Pattern Enumeration and Classification (CAPEC). The proposed CGP scheme's performance evaluation enhanced a 36% increase in password space, a 33% increase in possible password numbers, and a 36% increase in entropy when compared to prior methods. Our CGP approach met the challenge of the password being secure, memorable, user-friendly, and time-saving.

show abstract