Home // ACHI 2017, The Tenth International Conference on Advances in Computer-Human Interactions // View article

PassGame: A Shoulder-Surfing Resistant Mobile Authentication Scheme

Authors:
Jonathan Gurary
Ye Zhu
Nahed Alnahash
Huirong Fu

Keywords: shoulder surfing, challenge response, mobile authentication, graphical passwords

Abstract:
Ubiquitous computing enabled by mobile devices, such as smartphones and tablets, causes more exposure of device users to shoulder-surfing attacks in crowded places, such as a subway train. In this paper, we propose PassGame, a shoulder-surfing resistant mobile authentication scheme based on board games. The design of PassGame is based on the popular game of chess. PassGame challenges a user with a random formation of chess pieces on a game board. A successful authentication requires a user to respond to the challenge so that a set of predefined rules are satisfied after adjustments made by the user. PassGame can be finished by a user without any chess knowledge. We implement PassGame on the Android operating system. Our user studies with the Android implementation show that PassGame passwords with more password strength than current mobile authentication schemes can achieve 100% recall rates when recalled one week after password setup.

Pages: 200 to 205

Copyright: Copyright (c) IARIA, 2017

Publication date: March 19, 2017

Published in: conference

ISSN: 2308-4138

ISBN: 978-1-61208-538-8

Location: Nice, France

Dates: from March 19, 2017 to March 23, 2017