• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>Privacy, Security, Trust and the Management of e-Business, 2009. CONGRESS '09 >Web Authentication Using Mikon Images
【24h】

Web Authentication Using Mikon Images

机译:使用Mikon图像进行Web身份验证

获取原文
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Authentication is mostly achieved by means of the ubiquitous password. This is sub optimal in some settings, such as for user groups with cognitive or language difficulties. Many web-based systems have user groups with widely ranging capabilities, and more innovative authentication mechanisms should be investigated to enhance usability and accessibility while still delivering the required level of security to authorise legitimate users. This paper presents details of an authentication system which relies on the user identifying previously drawn Mikons. Mikons are self-drawn icon-like images, meant to depict a message the artist wants to convey at that point in time. These are drawn, at enrolment, using an embedded Shock Wave component within a browser. At authentication the user identifies his or her own Mikons from challenge sets, each containing one of the user's Mikon and a number of distractor Mikons. The efficacy of Mikons in this setting was investigated by using them in a recognition-based authentication system to authorise users of an online homework system over an eight month period. The Mikon-based system performed very well in terms of memorability and scalability, as anticipated, thus achieving the level of accessibility hoped for. A measure of predictability was observed, with a few of the participants being able to link sets of Mikons to their creators, but this did not pose a security risk to the system. This study shows that Mikon authentication has the potential to be a viable alternative to passwords for systems where the security requirement is secondary to other, more important, considerations. Such systems are usually low-risk and are often used by users with developmental, language or cognitive difficulties, or by users who are not yet literate. The imposition of a password on such users can be overly stringent and excessively demanding in terms of scarce cognitive resources. In this context, therefore, Mikons area viable alternative to meet t-nhe needs of the target user group.
机译:身份验证主要通过普遍存在的密码来实现。在某些情况下,例如对于有认知或语言障碍的用户群体,这是次优的。许多基于Web的系统的用户组具有广泛的功能,应研究更多创新的身份验证机制以增强可用性和可访问性,同时仍提供所需级别的安全性以授权合法用户。本文介绍了身份验证系统的详细信息,该系统依赖于用户标识先前绘制的Mikons。 Mikons是类似图标的自绘制图像,旨在描绘艺术家想要在该时间点传达的信息。这些是在注册时使用浏览器中的嵌入式Shock Wave组件绘制的。在验证时,用户从质询集中识别他或她自己的Mikon,每个包含用户的Mikon和多个干扰项Mikon。通过在基于识别的身份验证系统中使用Mikons来授权Mikons在八个月内授权在线作业系统用户,对Mikons在这种情况下的功效进行了调查。如预期的那样,基于Mikon的系统在可存储性和可伸缩性方面表现出色,从而达到了希望的可访问性水平。观察到了一种可预测性的度量,其中一些参与者能够将Mikon的集合链接到其创建者,但这不会给系统带来安全风险。这项研究表明,对于安全要求仅次于其他更重要考虑因素的系统,Mikon身份验证有可能成为可行的替代密码的方法。这样的系统通常是低风险的,并且经常被具有发育,语言或认知障碍的用户或尚未识字的用户使用。就这样的用户而言,在稀缺的认知资源方面强加密码可能过于严格和过分要求。因此,在这种情况下,Mikons区域可以满足目标用户群的需求。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号