Visible to the public Towards Gaze-Based Quantification of the Security of Graphical Authentication Schemes

TitleTowards Gaze-Based Quantification of the Security of Graphical Authentication Schemes
Publication TypeConference Paper
Year of Publication2018
AuthorsKatsini, Christina, Raptis, George E., Fidas, Christos, Avouris, Nikolaos
Conference NameProceedings of the 2018 ACM Symposium on Eye Tracking Research & Applications
PublisherACM
Conference LocationNew York, NY, USA
ISBN Number978-1-4503-5706-7
KeywordsEntropy, eye-tracking, graphical passwords, graphical user authentication, Metrics, password strength estimation, predictive security metrics, pubcrawl
Abstract

In this paper, we introduce a two-step method for estimating the strength of user-created graphical passwords based on the eye-gaze behaviour during password composition. First, the individuals' gaze patterns, represented by the unique fixations on each area of interest (AOI) and the total fixation duration per AOI, are calculated. Second, the gaze-based entropy of the individual is calculated. To investigate whether the proposed metric is a credible predictor of the password strength, we conducted two feasibility studies. Results revealed a strong positive correlation between the strength of the created passwords and the gaze-based entropy. Hence, we argue that the proposed gaze-based metric allows for unobtrusive prediction of the strength of the password a user is going to create and enables intervention to the password composition for helping users create stronger passwords.

URLhttps://dl.acm.org/citation.cfm?doid=3204493.3204589
DOI10.1145/3204493.3204589
Citation Keykatsini_towards_2018