Title :
Analyzing User Password Selection Behavior for Reduction of Password Space
Author :
Yampolskiy, Roman V.
Author_Institution :
Dept. of Comput. Sci. & Eng., Buffalo Univ., NY
Abstract :
This paper presents a comprehensive survey of recent literature on the topic of password dictionaries for alphanumeric and graphical user authentication approaches including some password schemes proposed by the author. After different methods used for reduction of password space are introduced, they are analyzed and compared with the intent of finding a common flaw of user authentication mechanisms, which allows for the development of such password dictionaries by hackers. Our conclusion is that any user authentication system, which allows users to exercise choice in selection of their passwords, is vulnerable to the password space reduction methods presented in this paper and so should not be utilized
Keywords :
authorisation; graphical user interfaces; graphical user authentication; password dictionaries; password space reduction; user authentication; user password; Authentication; Cities and towns; Computer hacking; Computer science; Computer security; Dictionaries; Educational institutions; Fans; Motion pictures; Positron emission tomography; authentication; password; password space reduction;
Conference_Titel :
Carnahan Conferences Security Technology, Proceedings 2006 40th Annual IEEE International
Conference_Location :
Lexington, KY
Print_ISBN :
1-4244-0174-7
DOI :
10.1109/CCST.2006.313438
