Recognition based graphical authentication systems rely on a system user’s ability to recognize previously chosen images and use those images to gain access into a computing systems, devices or application. Recognition based systems that utilise several types of images have been developed and studied. The déjà vu scheme depends on the use of abstract (meaningless) images. Images in the déjà vu scheme have no exact meaning. This scheme has also been actively studied. This article presents a between user study conducted on two recognition-based schemes using system prototypes. The Abstract Based Graphical Authentication (ABGA) was designed to simulate the déjà vu scheme. The performance of this system was compared with the performance of a novel system developed for this research. The novel system, called Subject Based Graphical Authentication (SBGA), in which the system used images from the various disciplines of the research participants. The researcher conducted a lab-based study with 100 participants, 50 participants for each of the prototypes. The study investigated the impact of using subject based images to enhance the usability and security of recognition-based graphical passwords. Two graphical models were thus developed and presented to the 100 participants, which comprised of staff and students from the departments of Computer Science, Mathematics, and Engineering. In the experiments, participants selected their graphical passwords from sets of images representing their various disciplines. The researcher observed that the memorability rate for graphical passwords consisting of subject based images aligned with participants' disciplines surpassed the rate for passwords with purely abstract images. The results indicated 81.7% successful login rate and 18.3% failure rate for Subject Based Graphical Authentication (SBGA). In contrast, Abstract Based Graphical Authentication (ABGP) exhibited a 51.5% successful login rate and a 48.7% failure rate. The findings provide significant insights for graphical password designers and developers seeking to enhance system memorability. Balancing image familiarity with security considerations can lead to more user-friendly and effective recognition-based authentication systems. This study provides valuable insights into the benefits of incorporating familiar images in recognition-based graphical passwords, showcasing a significant improvement in memorability and user authentication success. The findings underscore the importance of considering the user’s familiarity with portfolio images in the design of graphical authentication systems.
Read full abstract