Passchords: Secure multi-touch authentication for blind people

ASSETS'12 - Proceedings of the 14th International ACM SIGACCESS Conference on Computers and Accessibility

Volumn , Issue , 2012, Pages 159-166

  Azenkot, Shiri ^a   Rector, Kyle ^a   Ladner, Richard E ^a   Wobbrock, Jacob O ^b  

^a UNIVERSITY OF WASHINGTON   (United States)

^b Information School   (United States)

Author keywords

Blind; Mobile devices; Privacy; Security; Touch screens

Indexed keywords

AUTHENTICATION METHODS; BLIND; BLIND PEOPLE; MOBILE DEVICE USERS; MULTI-TOUCH; PASSWORD STRENGTH; PERSONAL IDENTIFICATION NUMBER; SECURITY; SECURITY RISKS; SECURITY THREATS; UNAUTHORIZED USERS;

DATA PRIVACY; HANDICAPPED PERSONS; MOBILE DEVICES; MOBILE TELECOMMUNICATION SYSTEMS; SECURITY SYSTEMS; SMARTPHONES; TOUCH SCREENS;

AUTHENTICATION;

EID: 84869748119     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/2384916.2384945     Document Type: Conference Paper

References (26)

1. N. Asokan and C. Kuo. Usable mobile security. In ICDCIT, pages 1-6, 2012.
2. D. Asonov and R. Agrawal. Keyboard acoustic emanations. In IEEE Symposium on Security and Privacy, pages 3-11, 2004.
3. S. Azenkot, J. O. Wobbrock, S. Prasain, and R. E. Ladner. Input finger detection for nonvisual touch screen text entry in perkinput. In Proc. GI'12, New York, NY, USA, 2012. ACM.
4. N. Ben-Asher, N. Kirschnick, H. Sieger, J. Meyer, A. Ben-Oved, and S. Möller. On the need for different security methods on mobile phones. In Proc. MobileHCI'11, pages 465-473, New York, NY, USA, 2011. ACM.
5. Y. Berger, A. Wool, and A. Yeredor. Dictionary attacks using keyboard acoustic emanations. In Proc. CCS'06, pages 245-254, New York, NY, USA, 2006. ACM.
6. J. P. Bigham and A. C. Cavender. Evaluating existing audio captchas and an interface optimized for non-visual use. In Proc. CHI'09, pages 1829-1838, New York, NY, USA, 2009. ACM.
7. M. Burnett. Perfect passwords. Syngress Publishing, Rockland, Massachusetts, 2006.
8. W. E. Burr, D. F. Dodson, W. T. Polk, and D. L. Evans. Electronic authentication guideline. In NIST Special Publication, 2004.
9. N. Clarke and S. Furnell. Authentication of users on mobile telephones: A survey of attitudes and practices. Computers Security, 24(7):519-527, 2005.
10. R. Dhamija and A. Perrig. Deja vu: A user study using images for authentication. In Proc. USENIX Security Symposium, pages 45-58, Berkeley, CA, USA, 2000. USENIX Association.
11. D. Foo Kune and Y. Kim. Timing attacks on pin input devices. In Proc. CCS'10, pages 678-680, New York, NY, USA, 2010. ACM.
12. J. Holman, J. Lazar, J. H. Feng, and J. D'Arcy. Developing usable captchas for blind users. In Proc. ASSETS'07, pages 245-246, New York, NY, USA, 2007. ACM.
13. M. Jakobsson. Why mobile security is not like traditional security, 2011. http://www.markusjakobsson.com/wp-content/uploads/fc11jakobsson.pdf.
14. M. Jakobsson, E. Shi, P. Golle, and R. Chow. Implicit authentication for mobile devices. In Proc. HotSec'09, pages 9-9, Berkeley, CA, USA, 2009. USENIX Association. 115-122, New York, NY, USA, 2009. ACM.
15. V. Kostakos. Human-in-the-loop: rethinking security in mobile and pervasive systems. In CHI EA '08, pages 3075-3080, New York, NY, USA, 2008. ACM.
16. R. Kuber and S. Sharma. Toward tactile authentication for blind users. In Proc. ASSETS'10, pages 289-290, New York, NY, USA, 2010. ACM.
17. F. X. Lin, D. Ashbrook, and S. White. Rhythmlink: securely pairing i/o-constrained devices by tapping. In Proc. UIST'11, pages 263-272, New York, NY, USA, 2011. ACM.
18. P. C. v. Oorschot and J. Thorpe. On predictive models and user-drawn graphical passwords. ACM Trans. Inf. Syst. Secur., 10(4):5:1-5:33, Jan. 2008.
19. K. Poulsen. Mitnick to lawmakers: People, phones and weakest links, 2009. http://www.politechbot.com/p-00969.html.
20. B. Schneier. The secret question is: why do IT systems use insecure passwords? The Guardian, 2009. http://www.guardian.co.uk/technology/2009/feb/19/ insecurepasswords-conflickerb-worm.
21. S. Shirali-Shahreza and M. H. Shirali-Shahreza. Accessibility of captcha methods. In Proc. AISec'11, pages 109-110, New York, NY, USA, 2011. ACM.
22. X. Suo, Y. Zhu, and G. Owen. Graphical passwords: a survey. In Computer Security Applications Conference, 21st Annual, page 472, dec. 2005.
23. S. Wiedenbeck, J. Waters, J. Birget, A. Brodskiy, and N. Memon. Passpoints: Design and longitudinal evaluation of a graphical password system. In Proc. USENIX Security Symposium, pages 102-127, Berkeley, CA, USA, 2005. USENIX Association.
24. J. O. Wobbrock. Tapsongs: tapping rhythm-based passwords on a single binary sensor. In Proc. UIST'09, pages 93-96, New York, NY, USA, 2009. ACM.
25. J. O. Wobbrock, L. Findlater, D. Gergle, and J. J. Higgins. The aligned rank transform for nonparametric factorial analyses using only anova procedures. In Proc. CHI'11, pages 143-146, New York, NY, USA, 2011. ACM.
26. Q. Xiao. Security issues in biometric authentication. In Information Assurance Workshop, 2005. IAW '05. Proceedings from the Sixth Annual IEEE SMC, pages 8-13, june 2005.