Increasing the security of gaze-based cued-recall graphical passwords using saliency masks

Computing and Communications

Text available via DOI:

https://doi.org/10.1145/2207676.2208712
Final published version

Research output: Contribution in Book/Report/Proceedings - With ISBN/ISSN › Conference contribution/Paper › peer-review

Published

Standard

Increasing the security of gaze-based cued-recall graphical passwords using saliency masks. / Bulling, Andreas; Alt, Florian; Schmidt, Albrecht.
Proceedings of the 2012 ACM annual conference on Human Factors in Computing Systems. New York: ACM, 2012. p. 3011-3020 (CHI '12).

Research output: Contribution in Book/Report/Proceedings - With ISBN/ISSN › Conference contribution/Paper › peer-review

Harvard

Bulling, A, Alt, F & Schmidt, A 2012, Increasing the security of gaze-based cued-recall graphical passwords using saliency masks. in Proceedings of the 2012 ACM annual conference on Human Factors in Computing Systems. CHI '12, ACM, New York, pp. 3011-3020. https://doi.org/10.1145/2207676.2208712

APA

Bulling, A., Alt, F., & Schmidt, A. (2012). Increasing the security of gaze-based cued-recall graphical passwords using saliency masks. In Proceedings of the 2012 ACM annual conference on Human Factors in Computing Systems (pp. 3011-3020). (CHI '12). ACM. https://doi.org/10.1145/2207676.2208712

Vancouver

Bulling A, Alt F, Schmidt A. Increasing the security of gaze-based cued-recall graphical passwords using saliency masks. In Proceedings of the 2012 ACM annual conference on Human Factors in Computing Systems. New York: ACM. 2012. p. 3011-3020. (CHI '12). doi: 10.1145/2207676.2208712

Author

Bulling, Andreas ; Alt, Florian ; Schmidt, Albrecht. / Increasing the security of gaze-based cued-recall graphical passwords using saliency masks. Proceedings of the 2012 ACM annual conference on Human Factors in Computing Systems. New York : ACM, 2012. pp. 3011-3020 (CHI '12).

Bibtex

@inproceedings{2424edcad92e4b8998e0265324f6b4f2,

title = "Increasing the security of gaze-based cued-recall graphical passwords using saliency masks",

abstract = "With computers being used ever more ubiquitously in situations where privacy is important, secure user authentication is a central requirement. Gaze-based graphical passwords are a particularly promising means for shoulder-surfing-resistant authentication, but selecting secure passwords remains challenging. In this paper, we present a novel gaze-based authentication scheme that makes use of cued-recall graphical passwords on a single image. In order to increase password security, our approach uses a computational model of visual attention to mask those areas of the image that are most likely to attract visual attention. We create a realistic threat model for attacks that may occur in public settings, such as filming the user's interaction while drawing money from an ATM. Based on a 12-participant user study, we show that our approach is significantly more secure than a standard image-based authentication and gaze-based 4-digit PIN entry.",

author = "Andreas Bulling and Florian Alt and Albrecht Schmidt",

year = "2012",

doi = "10.1145/2207676.2208712",

language = "English",

isbn = "978-1-4503-1015-4",

series = "CHI '12",

publisher = "ACM",

pages = "3011--3020",

booktitle = "Proceedings of the 2012 ACM annual conference on Human Factors in Computing Systems",

}

RIS

TY - GEN

T1 - Increasing the security of gaze-based cued-recall graphical passwords using saliency masks

AU - Bulling, Andreas

AU - Alt, Florian

AU - Schmidt, Albrecht

PY - 2012

Y1 - 2012

N2 - With computers being used ever more ubiquitously in situations where privacy is important, secure user authentication is a central requirement. Gaze-based graphical passwords are a particularly promising means for shoulder-surfing-resistant authentication, but selecting secure passwords remains challenging. In this paper, we present a novel gaze-based authentication scheme that makes use of cued-recall graphical passwords on a single image. In order to increase password security, our approach uses a computational model of visual attention to mask those areas of the image that are most likely to attract visual attention. We create a realistic threat model for attacks that may occur in public settings, such as filming the user's interaction while drawing money from an ATM. Based on a 12-participant user study, we show that our approach is significantly more secure than a standard image-based authentication and gaze-based 4-digit PIN entry.

AB - With computers being used ever more ubiquitously in situations where privacy is important, secure user authentication is a central requirement. Gaze-based graphical passwords are a particularly promising means for shoulder-surfing-resistant authentication, but selecting secure passwords remains challenging. In this paper, we present a novel gaze-based authentication scheme that makes use of cued-recall graphical passwords on a single image. In order to increase password security, our approach uses a computational model of visual attention to mask those areas of the image that are most likely to attract visual attention. We create a realistic threat model for attacks that may occur in public settings, such as filming the user's interaction while drawing money from an ATM. Based on a 12-participant user study, we show that our approach is significantly more secure than a standard image-based authentication and gaze-based 4-digit PIN entry.

U2 - 10.1145/2207676.2208712

DO - 10.1145/2207676.2208712

M3 - Conference contribution/Paper

SN - 978-1-4503-1015-4

T3 - CHI '12

SP - 3011

EP - 3020

BT - Proceedings of the 2012 ACM annual conference on Human Factors in Computing Systems

PB - ACM

CY - New York

ER -

Research

Links

Text available via DOI: