Abstract
Android Lock Pattern is popular as a screen lock method on mobile devices but it cannot be used directly over the Internet for user authentication. In our work, we carefully adapt Android Lock Pattern to satisfy the requirements of remote authentication and introduce a new pattern based method called char Pattern. Our new method allows dual-mode of input (typing a password and drawing a pattern) hence accommodate users who login alternately with a physical keyboard and a touchscreen device. It uses persuasive technology to create strong passwords which withstand attacks involving up to 106 guesses; an amount many experts believe sufficient against online attacks. We conduct a hybrid lab and web study to evaluate the usability of the new method and observe that logins with char Pattern are significantly faster than the ones with text passwords on mobile devices.
Original language | English |
---|---|
Article number | A5 |
Pages (from-to) | 74-86 |
Number of pages | 13 |
Journal | Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) |
Volume | 9393 LNCS |
DOIs | |
Publication status | Published - 2015 |
Externally published | Yes |
Event | International Conference on Passwords, PASSWORDS 2014 - Trondheim, Norway Duration: 8 Dec 2014 → 10 Dec 2014 |
Bibliographical note
Publisher Copyright:© Springer International Publishing Switzerland 2015.