CMAPS: A Chess-Based Multi-Facet Password Scheme for Mobile Devices
It has long been recognized, by both security researchers and human-computer interaction researchers, that no silver bullet for authentication exists to achieve security, usability, and memorability. Aiming to achieve the goals, we propose a Multi-fAcet Password Scheme (MAPS) for mobile authenticati...
| Main Authors: | , , , , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
IEEE
2018-01-01
|
| Series: | IEEE Access |
| Subjects: | |
| Online Access: | https://ieeexplore.ieee.org/document/8476573/ |
| id |
doaj-ae2f8852353843b2bf54f1c994169979 |
|---|---|
| record_format |
Article |
| spelling |
doaj-ae2f8852353843b2bf54f1c9941699792021-03-29T21:16:09ZengIEEEIEEE Access2169-35362018-01-016547955481010.1109/ACCESS.2018.28727728476573CMAPS: A Chess-Based Multi-Facet Password Scheme for Mobile DevicesYe Zhu0https://orcid.org/0000-0001-6459-204XJonathan Gurary1George Corser2Jared Oluoch3Nahed Alnahash4Huirong Fu5Junhua Tang6Department of Electrical Engineering and Computer Science, Cleveland State University, Cleveland, OH, USAJohn Carroll University, University Heights, OH, USADepartment of Computer Science and Information Systems, Saginaw Valley State University, Saginaw, MI, USADepartment of Engineering Technology, University of Toledo, Toledo, OH, USADepartment of Computer Science and Engineering, Oakland University, Rochester, MI, USADepartment of Computer Science and Engineering, Oakland University, Rochester, MI, USASchool of Electronic Information and Electrical Engineering, Shanghai Jiao Tong University, Shanghai, ChinaIt has long been recognized, by both security researchers and human-computer interaction researchers, that no silver bullet for authentication exists to achieve security, usability, and memorability. Aiming to achieve the goals, we propose a Multi-fAcet Password Scheme (MAPS) for mobile authentication. MAPS fuses information from multiple facets to form a password, allowing MAPS to enlarge the password space and improve memorability by reducing memory interference, which impairs memory performance according to psychology interference theory. The information fusion in MAPS can increase usability, as fewer input gestures are required for passwords of the same security strength. Based on the idea of MAPS, we implement a Chess-based MAPS (CMAPS) for Android systems. Only two and six gestures are required for CMAPS to generate passwords with better security strength than 4-digit PINs and 8-character alphanumeric passwords, respectively. Our user studies show that CMAPS can achieve high recall rates while exceeding the security strength of standard 8-character alphanumeric passwords used for secure applications.https://ieeexplore.ieee.org/document/8476573/Authenticationhuman computer interactiongraphical user interfaces |
| collection |
DOAJ |
| language |
English |
| format |
Article |
| sources |
DOAJ |
| author |
Ye Zhu Jonathan Gurary George Corser Jared Oluoch Nahed Alnahash Huirong Fu Junhua Tang |
| spellingShingle |
Ye Zhu Jonathan Gurary George Corser Jared Oluoch Nahed Alnahash Huirong Fu Junhua Tang CMAPS: A Chess-Based Multi-Facet Password Scheme for Mobile Devices IEEE Access Authentication human computer interaction graphical user interfaces |
| author_facet |
Ye Zhu Jonathan Gurary George Corser Jared Oluoch Nahed Alnahash Huirong Fu Junhua Tang |
| author_sort |
Ye Zhu |
| title |
CMAPS: A Chess-Based Multi-Facet Password Scheme for Mobile Devices |
| title_short |
CMAPS: A Chess-Based Multi-Facet Password Scheme for Mobile Devices |
| title_full |
CMAPS: A Chess-Based Multi-Facet Password Scheme for Mobile Devices |
| title_fullStr |
CMAPS: A Chess-Based Multi-Facet Password Scheme for Mobile Devices |
| title_full_unstemmed |
CMAPS: A Chess-Based Multi-Facet Password Scheme for Mobile Devices |
| title_sort |
cmaps: a chess-based multi-facet password scheme for mobile devices |
| publisher |
IEEE |
| series |
IEEE Access |
| issn |
2169-3536 |
| publishDate |
2018-01-01 |
| description |
It has long been recognized, by both security researchers and human-computer interaction researchers, that no silver bullet for authentication exists to achieve security, usability, and memorability. Aiming to achieve the goals, we propose a Multi-fAcet Password Scheme (MAPS) for mobile authentication. MAPS fuses information from multiple facets to form a password, allowing MAPS to enlarge the password space and improve memorability by reducing memory interference, which impairs memory performance according to psychology interference theory. The information fusion in MAPS can increase usability, as fewer input gestures are required for passwords of the same security strength. Based on the idea of MAPS, we implement a Chess-based MAPS (CMAPS) for Android systems. Only two and six gestures are required for CMAPS to generate passwords with better security strength than 4-digit PINs and 8-character alphanumeric passwords, respectively. Our user studies show that CMAPS can achieve high recall rates while exceeding the security strength of standard 8-character alphanumeric passwords used for secure applications. |
| topic |
Authentication human computer interaction graphical user interfaces |
| url |
https://ieeexplore.ieee.org/document/8476573/ |
| work_keys_str_mv |
AT yezhu cmapsachessbasedmultifacetpasswordschemeformobiledevices AT jonathangurary cmapsachessbasedmultifacetpasswordschemeformobiledevices AT georgecorser cmapsachessbasedmultifacetpasswordschemeformobiledevices AT jaredoluoch cmapsachessbasedmultifacetpasswordschemeformobiledevices AT nahedalnahash cmapsachessbasedmultifacetpasswordschemeformobiledevices AT huirongfu cmapsachessbasedmultifacetpasswordschemeformobiledevices AT junhuatang cmapsachessbasedmultifacetpasswordschemeformobiledevices |
| _version_ |
1724193228243075072 |