Image-based Object-sequenced Graphical Password Authentication System

---

Abstract

Textual passwords (one of the knowledge-based passwords) have been predictable and have long sustained security breaches due to their predictability (password dictionary attacks) and the possibility of shoulder-surfing and other such attacks. Biometric passwords are too rigid and can’t be duplicated but are expensive and cannot be applied to smaller, cost-effective systems. Whereas Graphical Passwords are reliable, memorable and are known to improve one’s cognition, hence very convenient to the user. Hybrid Authentication methods are proven to be far more secure than any other authentication methods. This paper provides a detailed study of graphical passwords, existing GPA techniques; and proposes an approach i.e., a combination of Graphical password and Textual authentication, a system with a better password entropy and ease of usability. It is well encrypted enough, to be able to defend against shoulder-surfing, dictionary attacks and many other security attacks. This authentication scheme contradicts the weak/strong password policy, browser cache and default credentials issues.

---

Keywords

Authentication; Graphical password authentication (GPA); Hybrid Authentication; Memorability; Shoulder Surfing; Security; Mobility; Textual passwords; Sequence of Objects (SOO); Usability