Color Pass
Author(s):
Aishwarya P M , MES College of Engineering and Technology, MG University; Hafeesa M Habeeb, MES College of Engineering and Technology, MG University
Keywords:
Color PIN, Shoulder surfing attack, User interface, Password, Partially observable
Abstract:
Classical PIN entry mechanism is widely used for authenticating a user. It is a popular scheme because it nicely balances the usability and security aspects of a system. However, if this scheme is to be used in a public system then the scheme may suffer from shoulder surfing attack. In this attack, an unauthorized user can fully or partially observe the login session. Even the activities of the login session can be recorded which the attacker can use it later to get the actual PIN. In this paper, we propose an intelligent user interface, known as Color Pass to resist the shoulder surfing attack so that any genuine user can enter the session PIN without disclosing the actual PIN. The Color Pass is based on a partially observable attacker model. The experimental analysis shows that the Color Pass interface is safe and easy to use even for novice users. While implementing user interface we have assigned unique colors to each numbers varying from 0 to 9. Ten colors is chosen in such a way so that each color is clearly distinguishable from other. As the color cell’s position in each table is fixed so user can locate the desired colored cell quite quickly. This contributes in getting faster login time. The tables are designed in such a way so that the user interface does not look too clumsy and also the screen space is used in an optimum manner.
Other Details:
Manuscript Id | : | NCTTP011
|
Publication Date | : | 06/05/2017
|
Page(s) | : | 38-42
|
Download Article