Security Analysis of Touch Inputted Passwords

Pereira Botelho, Bruno Alves; Nakamura, Emilio Tissato; Uto, Nelson

doi:10.1007/978-3-642-38631-2_61

Bruno Alves Pereira Botelho¹⁹,
Emilio Tissato Nakamura¹⁹ &
Nelson Uto¹⁹

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 7873))

Included in the following conference series:

International Conference on Network and System Security

3648 Accesses
1 Citations

Abstract

In this paper, we present a security analysis of a few touch inputted authentication methods (Android´s PIN and pattern unlock, and iconographic password), based mainly on the resistance against brute force attacks. In order to support our study, we developed a set of specific tools for performing the tests against each method. Recommendations for improving the security of the aforementioned mechanisms are given based on the experimental results.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Hoog, A.: Android forensics: investigation, analysis and mobile security for Google Android. Syngress (2011)
Google Scholar
Suo, X., Zhu, Y., Owen, G.: Graphical passwords: a survey. In: Proceedings of the 21st Annual Computer Security Applications Conference, ACSAC 2005, pp. 463–472 (2005)
Google Scholar
Tambascia, C., Duarte, R., Menezes, E.: Usability evaluation of iconographic authentication for mobile devices using Eye tracking. In: MOBILITY 2011 (October 2011)
Google Scholar
Ávila, I., Menezes, E., Braga, A.: Memorization Techniques in Iconic Passwords. In: IHCI 2012 (July 2012)
Google Scholar
Tambascia, C., Braga, A., Menezes, E., Negrão, F.: User Experience Evaluation in the Creation and Use of Iconographic Passwords for Authentication in Mobile Devices. In: MOBILITY 2012 (October 2012)
Google Scholar
Milano, D.: Android application testing guide. Packt Publishing (2011)
Google Scholar
Botelho, B., Nakamura, E., Uto, N.: Implementation of tools for brute forcing touch inputted passwords. In: ICITST 2012 (December 2012)
Google Scholar

Download references

Author information

Authors and Affiliations

CPqD - Centro de Pesquisa e Desenvolvimento, Brazil
Bruno Alves Pereira Botelho, Emilio Tissato Nakamura & Nelson Uto

Authors

Bruno Alves Pereira Botelho
View author publications
You can also search for this author in PubMed Google Scholar
Emilio Tissato Nakamura
View author publications
You can also search for this author in PubMed Google Scholar
Nelson Uto
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Computer Science Department, ETSI Informatica, University of Malaga, Campus de Teatinos, 29071, Malaga, Spain
Javier Lopez
School of Mathematics and Computer Science, Fujian Normal University, No. 32 Shangsan Road, 350007, Fuzhou, China
Xinyi Huang
Institute for Cyber Security,, University of Texas at San Antonio, One UTSA Circle, 78249, San Antonio, TX, USA
Ravi Sandhu

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Pereira Botelho, B.A., Nakamura, E.T., Uto, N. (2013). Security Analysis of Touch Inputted Passwords. In: Lopez, J., Huang, X., Sandhu, R. (eds) Network and System Security. NSS 2013. Lecture Notes in Computer Science, vol 7873. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-38631-2_61

Download citation

DOI: https://doi.org/10.1007/978-3-642-38631-2_61
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-38630-5
Online ISBN: 978-3-642-38631-2
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics