Have the cake and eat it too - Infusing usability into text-password based authentication systems

Tucson, Arizona December 05-December 09

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/CSAC.2005.28

21st Annual Computer Security Applica ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Sundararaman Jeyaraman Articles by Umut Topkara

	ASCII Text	x
	Sundararaman Jeyaraman, Umut Topkara, "Have the cake and eat it too - Infusing usability into text-password based authentication systems," Computer Security Applications Conference, Annual, pp. 473-482, 21st Annual Computer Security Applications Conference (ACSAC'05), 2005.

	BibTex	x
	@article{ 10.1109/CSAC.2005.28, author = {Sundararaman Jeyaraman and Umut Topkara}, title = {Have the cake and eat it too - Infusing usability into text-password based authentication systems}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {2005}, issn = {1063-9527}, pages = {473-482}, doi = {http://doi.ieeecomputersociety.org/10.1109/CSAC.2005.28}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - Have the cake and eat it too - Infusing usability into text-password based authentication systems SN - 1063-9527 SP473 EP482 A1 - Sundararaman Jeyaraman, A1 - Umut Topkara, PY - 2005 KW - null VL - 0 JA - Computer Security Applications Conference, Annual ER -

Sundararaman Jeyaraman, Purdue University

Umut Topkara, Purdue University

Text-password based authentication schemes are a popular means of authenticating users in computer systems. Standard security practices that were intended to make passwords more difficult to crack, such as requiring users to have passwords that "look random" (high entropy), have made password systems less usable and paradoxically, less secure. In this work, we address the need for enhancing the usability of existing text-password systems without necessitating any modifications to the existing password authentication infrastructure. We propose, develop and evaluate a system that automatically generates memorable mnemonics for a given password based on a text-corpus. Initial experimental results suggest that automatic mnemonic generation is a promising technique for making text-password systems more usable. Our system was able to generate mnemonics for 80.5% of six-character passwords and 62.7% of sevencharacter passwords containing lower-case characters (az), even when the text-corpus size is extremely small (1000 sentences).

Citation:

Sundararaman Jeyaraman, Umut Topkara, "Have the cake and eat it too - Infusing usability into text-password based authentication systems," acsac, pp.473-482, 21st Annual Computer Security Applications Conference (ACSAC'05), 2005

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.