Abstract
The graphical password strategy could really change how a typical user would insert their password and how secure it could be, it still has its flaws and limitations. One of the limitations of a graphical password strategy is that it could be prone to shoulder surfing. Without having a password field just like an alphanumeric password would have, a graphical password could be physically observed and especially in public places and the attacker has a clear visual of the password being inserted for multiple times, they could easily crack the password which is quite a severe flaw. Another potential limitation of a graphical password strategy is that it is prone to guessing as well. Same as an alphanumeric password, if the user only registered a short and predictable password, the chances of it being prone to guessing would increase. To overcome these potential limitations, a shoulder surfing resistant technique could be implemented such as including multiple mouse cursors when the users are logging in to their account which would confuse the attacker from identifying which one is the legitimate mouse cursors and which click points has the user clicked. Next, same as an alphanumeric password, a requirement of at least 10 click points must be clicked to make the graphical password stronger could be implemented to the system to ensure that the user does not just enter a sloppy password which would decrease the chances of an attacker to guess the password of the user dramatically.
Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
