Gaze-Contingent Passwords at the ATM (2008)
Author(s): Dunphy P, Fitch A, Olivier P
Abstract: Knowledge-based authentication (e.g. passwords) has long been associated with a vulnerability to shoulder sur�ng; being stolen by attackers overlooking the interaction. In order to combat such threats, steps can be taken to either alter the form of the challenge made to the user, or make use of an interaction technique that is resistant to information leakage. We consider the latter, and empirically evaluate the usability of gaze-contingent interaction as a solution to shoulder sur�ng in an ATM scenario. We combine this technique with Passfaces graphical passwords; potentially more memorable than PINs and well suited to accept gaze-based input. To create a naturalistic setting for our study we utilise the immersive video technique originally deployed in the design of pervasive computing systems (Singh et al., 2006). We demonstrate the e�cacy of the approach, a usable graphical password entry system that is impossible to attack by direct observation.
- Date: 2-3 September 2008
- Conference Name: Proceedings of COGAIN 2008: Communication , Environment and Mobility Control by Gaze
- Pages: 59-62
- Publisher: COGAIN NoE
- Publication type: Conference Proceedings (inc. abstract)
- Bibliographic status: Published