Scribd Logo
Upload

Welcome to Scribd!

  • Chi As Son Slides

    Uploaded by

    Abhi005
    22 views12 pages
    This document discusses graphical passwords and accessibility. It proposes a generalized cue-response authentication model that separates the semantic content from the presentation modality. This allows the cue and response to be provided in any modality like images, text, sound or gestures. It provides an example called PassSounds, where the cue is a music clip and the response is clicking at certain times in the clip. The document argues this generalized model provides more accessible authentication options tailored to users' abilities.

    Original Description:

    Original Title

    Chi as Son Slides

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document discusses graphical passwords and accessibility. It proposes a generalized cue-response authentication model that separates the semantic content from the presentation modality. This allows the cue and response to be provided in any modality like images, text, sound or gestures. It provides an example called PassSounds, where the cue is a music clip and the response is clicking at certain times in the clip. The document argues this generalized model provides more accessible authentication options tailored to users' abilities.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    22 views12 pages

    Chi As Son Slides

    Uploaded by

    Abhi005
    This document discusses graphical passwords and accessibility. It proposes a generalized cue-response authentication model that separates the semantic content from the presentation modality. This allows the cue and response to be provided in any modality like images, text, sound or gestures. It provides an example called PassSounds, where the cue is a music clip and the response is clicking at certain times in the clip. The document argues this generalized model provides more accessible authentication options tailored to users' abilities.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 12

    Accessibility and

    Graphical Passwords
    Sonia Chiasson, Alain Forget, Robert Biddle
    Carleton University, Ottawa, Canada
    Click-based graphical passwords
    PassPoints Persuasive CCP (PCCP)

    Cued Click-Points
    (CCP)

    http://hotsoft.carleton.ca 2
    Accessibility?
     Inaccessible for some user populations
    ◦ Rely on vision
    ◦ Rely on fine motor control

    1 2 4 5
    3

    http://hotsoft.carleton.ca 3
    Content vs Presentation

     Semantic content should be separated from


    presentation modality
    ◦ Same content linked with different modalities
    ◦ E.g. Cascading Style Sheets in web design

    http://hotsoft.carleton.ca 4
    Structure of click-based
    graphical passwords

     Presentation: Cue
    ◦ System triggers memory of password
     Displays image

     Selection: Response
    ◦ User provides secret
     Clicks on specific area

    http://hotsoft.carleton.ca 5
    Generalized Cue-Response
    Authentication Model

     Presentation: any cue, any modality


    ◦ Image, text, sound, haptic, video…

     Response: any user input, any modality


    ◦ Clicking, typing, verbal, gesture, mouse movement…

    http://hotsoft.carleton.ca 6
    Example: PassSounds

     Cue: Music clip


    ◦ What is an acceptable length?

     Response: Click at appropriate time


    ◦ How accurate can users be?
     Musicians can synchronize at approximately 250ms
    ◦ How many clicks?

    http://hotsoft.carleton.ca 7
    PassSounds: Security
     PassPoints:  PassSounds:
    ◦ Image size 451x331 ◦ 30-second clip
    ◦ 5 clicks ◦ 5 clicks
    ◦ Tolerance 19x19 ◦ Tolerance 1 second
    ◦ Theoretical password ◦ Theoretical password
    space 1.2 x 1013 ≈ 43 space 1.4 x 105 ≈ 17
    bits bits

    http://hotsoft.carleton.ca 8
    Hotspots and Patterns
     PassPoints  PassSounds
    ◦ Choose similar ◦ Choose points related to
     Click-points on an  Lyrics
    image (hotspots)  Beats
     Patterns (lines)  Sequential order

    ◦ Minimize by: ◦ Minimize by:


     Using several images  Using several clips?
     Helping select  Suggesting clicks?
    passwords  Identifying other
    elements in the clip?

    http://hotsoft.carleton.ca 9
    Alternatives
     Any combination of presentation and response
    ◦ Audio
     As a cue to trigger behaviour other than click
    ◦ Haptics
     As a cue or as input

     Allow users to select their preferred modalities


    for a given system
    ◦ In-progress

     Caution:
    ◦ Cue and response cannot be evaluated in isolation

    http://hotsoft.carleton.ca 10
    Summary
     General cue-response authentication
    ◦ Allows for
     separation of cue and response
     modalities most appropriate for different users

    http://hotsoft.carleton.ca 11
    chiasson@scs.carleton.ca

    http://hotsoft.carleton.ca/security

    http://hotsoft.carleton.ca 12

    You might also like