Mar 20 2011
We were pleased to learn that our survey of graphical passwords has been accepted for publication in ACM Computing Surveys. It will appear in issue 44(4).
Title: Graphical Passwords: Learning from the First Twelve Years
Starting around 1999, a great many graphical password schemes have been proposed as alternatives to text-based password authentication. We provide a comprehensive overview of published research in the area, covering both usability and security aspects, as well as system evaluation. The paper first catalogues existing approaches, highlighting novel features of selected schemes and identifying key usability or security advantages. We then review usability requirements for knowledge-based authentication as they apply to graphical passwords, identify security threats that such systems must address and review known attacks, discuss methodological issues related to empirical evaluation, and identify areas for further research and improved methodology.