Author : Archi Gaikwad 1
Date of Publication :1st March 2017
Abstract: We face many security breaching issues for our desktop applications and online services. Many internet applications commonly use text based passwords for authentication. Text based passwords are prone to many attacks such as online guessing attacks , relay attacks ,shoulder surfing and are usually hard to remember. Graphical password proves to be a much better alternative to overcome these attacks. This paper introduces the use of Captcha as Graphical Password- CaRP to enhance the security at the time of login. CaRP is the combination of both graphical password and captcha technology. This system allows the user to select different visual login schemes. CaRP is one of the reasonable solutions that provides added security
Reference :
-
- Captcha as Graphical Passwords—A New Security Primitive Based on Hard AI Problems IEEE TRANSACTIONS ON INFORMATION FORENSICS AND SECURITY, VOL. 9, NO. 6, JUNE 2014.
- The Graphical Security System by using CaRP. 2015 International Conference on Energy Systems and Applications (ICESA 2015) Dr. D. Y. Patil Institute of Engineering and Technology, Pune, India 30 Oct - 01 Nov, 2015.
- Click and session based - Captcha as Graphical Password Authentication Scheme for smart phone and web, 2015 International Conference on Information Processing (ICIP) Dec 16-19, 2015.
- R.Biddle, S. Chiasson, and P. C. van Oorschot, “Graphical passwords: Learning from the first twelve years,” ACM Computer Surveys, vol. 44, no. 4, 2014.
- B. B. Zhu et al., “Attacks and design of image recognition CAPTCHAs,” in Proc. ACM CCS, 2010.
- Design and Implementation of Password-based Identity Authentication System-2010 International Conference on Computer Application and System Modeling (ICCASM 2010).
- P. C. van Oorschot, A. Salehi-Abari, and J. Thorpe, “Purely automated attacks on pass points-style graphical passwords,” IEEE Trans. Inf. Forensics Security, vol. 5, no. 3, Sep. 2010.
- S. Chiasson, P. C. van Oorschot, and R. Biddle, “Graphical password authentication using cued click points,” in Proc. ESORICS, 2007.