DOI : https://doi.org/10.18517/ijaseit.7.3.1517

A Pattern-Based Password Authentication Scheme for Minimizing Shoulder Surfing Attack

M I Awang (1), M A Mohamed (2), R R Mohamed (3), A Ahmad (4), N A Rawi (5)
(1) Faculty of Informatics and Computing, Universiti Sultan Zainal Abidin, Besut Campus, 22200 Terengganu, Malaysia
(2) Faculty of Informatics and Computing, Universiti Sultan Zainal Abidin, Besut Campus, 22200 Terengganu, Malaysia
(3) Department of System and Networking, Universiti Tenaga Nasional, 43000 Kajang, Selangor, Malaysia
(4) Department of Computer Science, National Defence University of Malaysia, 57000 Sungai Besi, Kuala Lumpur, Malaysia
(5) Faculty of Informatics and Computing, Universiti Sultan Zainal Abidin, Besut Campus, 22200 Terengganu, Malaysia
Fulltext View | Download
How to cite (IJASEIT) :
Awang, M I, et al. “A Pattern-Based Password Authentication Scheme for Minimizing Shoulder Surfing Attack”. International Journal on Advanced Science, Engineering and Information Technology, vol. 7, no. 3, June 2017, pp. 1049-55, doi:10.18517/ijaseit.7.3.1517.
Citation Format :
The user usually uses password to avoid the attacks like a dictionary attack, brute force attack and shoulder surfing attack which is the famous attack nowadays. The shoulder surfing attack is a direct observation technique by watching over the user’s shoulder when they enter their password to get information. The most common authentication method used by the user is textual password. But, the textual password has many disadvantages because it is vulnerable to attack as it tends to shoulder surfing attack. In this project, a pattern-based password authentication will develop to overcome this problem. Using this scheme, the user needs to select the type of pattern that they like during registration. To login to their account, the user needs to enter the password in the form of the textual password in ordering manner based on a pattern that they choose during registration. The text password grid presented with a different style as it filled with random objects whether characters, numbers or images. This method is suitable to minimizing shoulder surfing attack as it can improve the security of user’s password and they can efficiently login to the system.

Authors who publish with this journal agree to the following terms:

    1. Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgement of the work's authorship and initial publication in this journal.
    2. Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgement of its initial publication in this journal.
    3. Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work (See The Effect of Open Access).