P. Arulprakash, K. Vidhya, E. Menaga priya, R. Abinisha, E. Manoj, RVS College of Engineering and Technology, Coimbatore, Tamilnadu, India
International Journal of Advanced Information and Communication Technology
Received On : October 10, 2020
Revised On : November 13, 2020
Accepted On : December 12, 2020
Published On : Junuary 05, 2020
Volume 07, Issue 01
Pages : 001-005
Abstract
People enjoy the convenience of on-line services, but online environments may bring many risks. We propose a virtual password concept involving a small amount of human computing to secure users’ passwords in on-line environments. We adopt userdetermined randomized linear generation functions to secure users’ passwords based on the fact that a server has more information than any adversary does. We analyze how the proposed scheme defends against phishing, key logger, and shoulder-surfing attacks. To the best of our knowledge, our virtual password mechanism is the first one which is able to defend against all three attacks together. In this work, we discussed how to prevent users’ passwords from being stolen by adversaries. We proposed a virtual password concept involving a small amount of human computing to secure users’ passwords in on-line environments. We also implemented the system to do some tests and survey feedback indicates the feasibility of such a system. In this paper, we discuss how to prevent users’ passwords from being stolen by adversaries in online environments and automated teller machines. We propose differentiated virtual password mechanisms in which a user has the freedom to choose a virtual password scheme ranging from weak security to strong security, where a virtual password requires a small amount of human computing to secure users’ passwords. Among the schemes, we have a default method (i.e., traditional password scheme), system recommended functions, user-specified functions, user-specified programs, and so on. A function/program is used to implement the virtual password concept with a tradeoff of security for complexity requiring a small amount of human computing.
Keywords
Authentication; Access Code; Surfing Attacks; Smudge Attacks.
Cite this article
P. Arulprakash, K. Vidhya, E. Menaga priya, R. Abinisha, E. Manoj, “The Surfing Attacks Secured Password Authentication System,” INTERNATIONAL JOURNAL OF ADVANCED INFORMATION AND COMMUNICATION TECHNOLOGY, pp. 001–005, Jan. 2020.
Copyright
© P. Arulprakash, K. Vidhya, E. Menaga priya, R. Abinisha, E. Manoj. This is an open access article distributed under the terms of the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original author and source are credited.