Exploring the Guessability of image passwords

Soumyadeb Chowdhury, Ron Poet, Lewis Mackenzie

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

This paper presents a user study with 70 participants using four different image types: Mikon; doodle; art; object, to examine guessability of image passwords to textual descriptions The study reported in this paper will examine, whether a written (textual) copy made by an account holder for recalling the target images forming a password in subsequent use, could be used for successful authentication by an attacker. The statistical test results of the study revealed that object images had the highest guessability, followed by the doodle images. The guessability of Mikon images was either equal to or slightly higher than the art images. The results also showed that the subjects described the elements in the target image, while making a written copy of their passwords for subsequent use, in the given experimental set-up. Based on the results obtained, we recommend the use of art images as passwords in image authentication.
Original languageEnglish
Title of host publicationSIN '14: Proceedings of the 7th International Conference on Security of Information and Networks
Place of PublicationNew York, NY (US)
PublisherACM
Pages264-271
Number of pages8
ISBN (Print)978-1-4503-3033-6
DOIs
Publication statusPublished - 2014
Event7th International Conference on Security of Information and Networks - Glasgow
Duration: 9 Sep 201411 Sep 2014

Conference

Conference7th International Conference on Security of Information and Networks
Abbreviated titleSIN '14
CityGlasgow
Period9/09/1411/09/14

Fingerprint

Authentication
Statistical tests

Cite this

Chowdhury, S., Poet, R., & Mackenzie, L. (2014). Exploring the Guessability of image passwords. In SIN '14: Proceedings of the 7th International Conference on Security of Information and Networks (pp. 264-271). New York, NY (US): ACM. https://doi.org/10.1145/2659651.2659699
Chowdhury, Soumyadeb ; Poet, Ron ; Mackenzie, Lewis . / Exploring the Guessability of image passwords. SIN '14: Proceedings of the 7th International Conference on Security of Information and Networks . New York, NY (US) : ACM, 2014. pp. 264-271
@inproceedings{48460db52e084829a9079998b7104723,
title = "Exploring the Guessability of image passwords",
abstract = "This paper presents a user study with 70 participants using four different image types: Mikon; doodle; art; object, to examine guessability of image passwords to textual descriptions The study reported in this paper will examine, whether a written (textual) copy made by an account holder for recalling the target images forming a password in subsequent use, could be used for successful authentication by an attacker. The statistical test results of the study revealed that object images had the highest guessability, followed by the doodle images. The guessability of Mikon images was either equal to or slightly higher than the art images. The results also showed that the subjects described the elements in the target image, while making a written copy of their passwords for subsequent use, in the given experimental set-up. Based on the results obtained, we recommend the use of art images as passwords in image authentication.",
author = "Soumyadeb Chowdhury and Ron Poet and Lewis Mackenzie",
year = "2014",
doi = "10.1145/2659651.2659699",
language = "English",
isbn = "978-1-4503-3033-6",
pages = "264--271",
booktitle = "SIN '14: Proceedings of the 7th International Conference on Security of Information and Networks",
publisher = "ACM",
address = "United States",

}

Chowdhury, S, Poet, R & Mackenzie, L 2014, Exploring the Guessability of image passwords. in SIN '14: Proceedings of the 7th International Conference on Security of Information and Networks . ACM, New York, NY (US), pp. 264-271, 7th International Conference on Security of Information and Networks, Glasgow, 9/09/14. https://doi.org/10.1145/2659651.2659699

Exploring the Guessability of image passwords. / Chowdhury, Soumyadeb; Poet, Ron; Mackenzie, Lewis .

SIN '14: Proceedings of the 7th International Conference on Security of Information and Networks . New York, NY (US) : ACM, 2014. p. 264-271.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

TY - GEN

T1 - Exploring the Guessability of image passwords

AU - Chowdhury, Soumyadeb

AU - Poet, Ron

AU - Mackenzie, Lewis

PY - 2014

Y1 - 2014

N2 - This paper presents a user study with 70 participants using four different image types: Mikon; doodle; art; object, to examine guessability of image passwords to textual descriptions The study reported in this paper will examine, whether a written (textual) copy made by an account holder for recalling the target images forming a password in subsequent use, could be used for successful authentication by an attacker. The statistical test results of the study revealed that object images had the highest guessability, followed by the doodle images. The guessability of Mikon images was either equal to or slightly higher than the art images. The results also showed that the subjects described the elements in the target image, while making a written copy of their passwords for subsequent use, in the given experimental set-up. Based on the results obtained, we recommend the use of art images as passwords in image authentication.

AB - This paper presents a user study with 70 participants using four different image types: Mikon; doodle; art; object, to examine guessability of image passwords to textual descriptions The study reported in this paper will examine, whether a written (textual) copy made by an account holder for recalling the target images forming a password in subsequent use, could be used for successful authentication by an attacker. The statistical test results of the study revealed that object images had the highest guessability, followed by the doodle images. The guessability of Mikon images was either equal to or slightly higher than the art images. The results also showed that the subjects described the elements in the target image, while making a written copy of their passwords for subsequent use, in the given experimental set-up. Based on the results obtained, we recommend the use of art images as passwords in image authentication.

UR - http://dl.acm.org/citation.cfm?doid=2659651.2659699

U2 - 10.1145/2659651.2659699

DO - 10.1145/2659651.2659699

M3 - Conference contribution

SN - 978-1-4503-3033-6

SP - 264

EP - 271

BT - SIN '14: Proceedings of the 7th International Conference on Security of Information and Networks

PB - ACM

CY - New York, NY (US)

ER -

Chowdhury S, Poet R, Mackenzie L. Exploring the Guessability of image passwords. In SIN '14: Proceedings of the 7th International Conference on Security of Information and Networks . New York, NY (US): ACM. 2014. p. 264-271 https://doi.org/10.1145/2659651.2659699