Abstract

Due to recent advancements and appealing applications, the purchase rate of smart devices is increasing at a higher rate. Parallely, the security related threats and attacks are also increasing at a greater ratio on these devices. As a result, a considerable number of attacks have been noted in the recent past. To resist these attacks, many password-based authentication schemes are proposed. However, most of these schemes are not screen size independent; whereas, smart devices come in different sizes. Specifically, they are not suitable for miniature smart devices due to the small screen size and/or lack of full sized keyboards. In this paper, we propose a new screen size independent password-based authentication scheme, which also offers an affordable defense against shoulder surfing, brute force, and smudge attacks. In the proposed scheme, the Press Touch (PT)—a.k.a., Force Touch in Apple’s MacBook, Apple Watch, ZTE’s Axon 7 phone; 3D Touch in iPhone 6 and 7; and so on—is transformed into a new type of code, named Press Touch Code (PTC). We design and implement three variants of it, namely mono-PTC, multi-PTC, and multi-PTC with Grid, on the Android Operating System. An in-lab experiment and a comprehensive survey have been conducted on 105 participants to demonstrate the effectiveness of the proposed scheme.

Highlights

  • Recent enhancements to smart devices and their appealing applications make them desirable to consumers of all ages

  • Press touch code: A screen size independent authentication scheme for smart devices obligatory, and in this paper, we propose a such scheme, which is elaborated in the subsequent section

  • At 2 m distance, right side has the most resilience against the Shoulder Surfing attack for both the schemes, i.e., 0.857 for multi-Press Touch Code (PTC) and 0.67 for Knock Code

Read more

Summary

Introduction

Recent enhancements to smart devices and their appealing applications make them desirable to consumers of all ages. Smart devices come in different sizes—most of the existing password-based authentication schemes are not screen size independent as argued in earlier discussions. We tackle this issue by proposing a new screen size password-based independent authentication scheme, which transforms the existing Press Touch (PT) into a new type of code, named Press Touch Code (PTC). This code can be applied on any smart devices irrespective of their sizes. A novel screen size independent authentication scheme is proposed that utilizes the press touch technique of smart devices and offers an affordable defense against shoulder surfing, brute force, and smudge attacks.

Related works
Registration
Authentication
Conclusion
Full Text
Published version (Free)

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call