Show simple item record

dc.contributor.authorFietkau, Julian
dc.contributor.authorBalthasar, Mandy
dc.date.accessioned2019-08-30T03:46:37Z
dc.date.available2019-08-30T03:46:37Z
dc.date.issued2019
dc.identifier.urihttp://dl.gi.de/handle/20.500.12116/25105
dc.description.abstractBuilding upon work by Perrig & Song [21], we propose a novel hash visualization algorithm and examine its usefulness for user-governed password validation in real time. In contrast to network-based password authentication and the best practices for security which have been developed with that paradigm in mind, we are concerned with use cases that require user-governed password validation in nonnetworked untrusted contexts, i.e. to allow a user to verify that they have typed their password correctly without ever storing a record of the correct password between sessions (not even a hash). To that end, we showcase a newly designed hash visualization algorithm named MosaicVisualHash and describe how hash visualization algorithms can be used to perform user-governed password validation. We also provide a set of design recommendations for systems where hash visualization for password validation is performed in real time, i.e. as the user is in the process of typing their password.en
dc.language.isoen
dc.publisherGesellschaft für Informatik e.V.
dc.relation.ispartofMensch und Computer 2019 - Workshopband
dc.relation.ispartofseriesMensch und Computer
dc.subjecthash visualization
dc.subjectimage recognition
dc.subjectpassword masking
dc.subjectusable security
dc.subjectauthentication
dc.subjecthuman-computer interaction
dc.titleUsing hash visualization for real-time user-governed password validationen
dc.typeText/Conference Poster
dc.pubPlaceBonn
mci.document.qualitydigidoc
mci.conference.sessiontitleMCI-WS08: 5. Usable Security und Privacy Workshop
mci.conference.locationHamburg
mci.conference.date8.-11. September 2019
dc.identifier.doi10.18420/muc2019-ws-302-04


Files in this item

Thumbnail

Show simple item record