To Survey Graphical Password Verification Method

Abstract

In this present time, authentication is the way of giving persons access to system object based on user\'s uniqueness. If the codes match, the process will be succeed and user will get the consent to access the system. Text based password scheme follows the guidelines such as at least 8 characters long, should combine upper-case and lower-case and digit. user have problem to remember their complicated password over time due to the limitation of human brain, user tend to forget about their password. User tend to use the same password for all type of account. So if one account is hacked, the possibility for other account to be hack is a high. Graphical password can be used as alternative to solve the issue related to the text-based authentication based on the fact that humans can tend to remember pictures batter then text. Now a day’s many computer system, Network and internet based environment are trying to use of graphical authentication technique in this paper we make a survey of the basic authentication and its technique and also presents a comprehensive study of graphical password authentication method and graphical password system.

Introduction

I. INTRODUCTION

A password authentication system allows user   choice while influencing users toward stronger password identify that there are three major Areas where human computer interaction is important authentication, security operation and the developing secure system. Alphanumeric password where first presented in the 1960 as a result to security issues for first multiuser operating system. An alphanumeric password is only a sequence of letters and digits. Graphical password consist of choosing images or drawing symbol rather than entering textual character It was first described by Greg Blonder in 1996. Physiological studies have shown that  people can remember pictures better than text human brain is capable of processing and storing large volume of graphical  information with easiness…while it is very tough to recall a string of fifty characters, humans are capable easy to recall faces of people places we visited and things.

A. Graphical Password Authentication Methods

Token based authentication method

• Biometric based authentication method
• Knowledge based authentication method

1. Token Based Authentication

Token based techniques, like key cards, bank cards and smart cards are mostly used. Token based authentication systems also use knowledge based techniques to upgrade security, for example: ATM cards are generally used together with a PIN number.

2. Biometric Based Authentication

Biometric based authentication techniques, such as a fingerprints, iris scan, or facial recognition, are not yet broadly accepted. the main drawback of this scheme is that such systems can be costly, and the identification system can be slow and often unreliable. However, this type of technique provide the uppermost level of security.

3. Knowledge Based Authentication

knowledge based authentication method are the further most broadly used authentication techniques and include both text-based and picture-based password the picture based techniques can be further divided into two system:-recognition based authentication system and recall based the graphical authentication system knowledge based authentication method shared secret key which is used in banks, financial institutions, internet service provider and email services provider like Gmail, Yahoo mail  etc.

a. Recognition based technique: Dhamija and Perring advised a graphical authentication technique established on the Hash visualization scheme in their method the user is asked to select a certain number of pictures from a set of random images generated by a program later the user will be required to identify the  preselected images in order to be authenticated. A weakness of this system is that the server needs to store the seeds of the portfolio images of each user in plain tab text.

b. Recall based techniques: In the recall based techniques user need to recall or remember the particular images or drawing which he or she has already generated in the phase of registration. There are lot of techniques provided for recall based scheme. Here we have selected a scheme proposed by Jemyn called Draw-A- Secret (DAS) for our analysis. in this scheme user need to design a picture or signature on a 2D grid. The coordinate occupied by the picture drawn by user are stored in the order of drawing. In the authentication process user need to redraw the same picture. If the picture touches the same grid, then the user is authenticated.

II. LITERATURE REVIEW

These  including a few article and journal that related directly and indirectly to the secure graphical password system and also describe about the related research that is review for graphical password authentication which are being proposed. All this survey was described, summarized, evaluated and clarified.

Conclusion

In this survey,I have focused an comprehensive study of current Graphical Password Techniques, Different techniques from recognition based, Cued recall based and Hybrid schemes of Graphical Password Techniques are observed and reviewed.Though the main consultation for graphical based password is that people are better at remembering picture password than text based passwords, our fundamental analysis proposes that it is very complicated to break graphical password using various method. Therefore, it can be concluded that, we need our authentication system to be more reliable robust and Secure as there is always a place for improvement. my primary analysis justify that it is harder to break graphical password using the traditional attack approaches such as brute force search, dictionary attack or spyware. much more research and user studies are needed for graphical password technique to reach higher levels of capability and cooperation.

References

[1] Dec 2009, H. Gao proposed paper on “graphical password scheme using color login”. [2] In May 2011, M. Sreelatha proposed Hybrid Textual Authentication Scheme. [3] Er. Aman Kumar, Er. Naveen Bilandi, Department of Computer Science and Engineering, DAV University, Jalandhar, Punjab, India “Graphical Password Based Authentication Based System for Mobile Systems”. [4] Miss.Swati Tidke, Miss Nagama Khan, Miss.Swati Balpande Computer Engineering, RTM nagpur university, M.I.E.T Bhandara, “Password Authentication Using Text and Colors”. [5] Veena Rathanavel, Swati Mali, Student M. Tech, Department of Computer Engineering, K J Somaiya, College of Engineering Mumbai, “Graphical Password as an OTP”. [6] Veena Rathanavel, Swati Mali, Student M. Tech, Department of Computer Engineering, K J Somaiya, College of Engineering Mumbai, “Graphical Password as an OTP”. [7] In 2017 Aayush Dilipkumar Jain, Ramkrishna Khetan Krishnakant Dubey, Prof. Harshali Rambade K. Elissa, Department of Information Technology Vidyalankar Institute of Technology, Mumbai, “Color Shuffling Password Based Authentication”. [8] Harsh Kumar Sarohi, Farhat Ullah Khan, “Graphical Password Authentication Schemes: Current Status and Current Issues,” IJCSI International Journal of Computer Science Issues, Vol. 10, Issue 2, No 1, March 2013. [9] “Graphical Passwords: A Survey” by Xiaoyuan Suo, Ying Zhu, G. Scott. Owen. [10] R. Dhamija and A. Perrig. “Déjà vu: A User Study Using Images for Authentication”, In Proceedings of the USENIX Security Symposium, 2000. [11] I. Jermyn, A. Mayer, F. Monrose. M. K. Reiter and A. D. Rubin, “The Design and Analysis of GraphicalPasswords”, In Proceedings of the 8th USENIX Security Symposium, 1999. [12] G. Blonder, “Graphical Password”, In Lucent Technologies, Inc., M urray Hill, NJ, United States Patent 5559961, 1996. [13] Passlogix http://www.passlogix.com, Accessed on February 2007. [11] S. Wiedenbeck, J. Waters, J. C. Birget, A. Brodskiy, and N. Memon, “Authentication Using Graphical Passwords: Basic Results”, In Human-Computer Interaction International (HCII 2005), Las Vegas, NV, 2005. [14] W. Jansen, S. Gavrila, V. Korolev, R. Ayers, and R. Swanstrom, \"Picture Password: A Visual Login Technique for Mobile Devices,\" National Institute of Standards and Technology Interagency Report NISTIR 7030, 2003. [15] Real User Corporation, Passfaces TM http://www.realuser.com, Accessed on January 2007.

Copyright

Copyright © 2022 Khusboo Shrivastava, Harish Sahu . This is an open access article distributed under the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.