An enhanced capture attacks resistant text-based graphical password scheme

Abstract

As conventional password schemes are vulnerable to capture attacks, many capture attacks resistant graphical password schemes have been proposed. However, as most users are more familiar with textual passwords than pure graphical passwords, capture attacks resistant text-based graphical password schemes have been proposed. Unfortunately, none of existing capture attacks resistant text-based graphical password schemes can provide both high resistance to accidental login, satisfactory resistance to capture attacks for general environments, and high usability. Herein, we propose an enhanced capture attacks resistant text-based graphical password scheme, Chameleon, which can offer high resistance to accidental login and appropriate resistance to capture attacks for general environments, and high usability. The users who are familiar with textual passwords and qwerty-like keyboards can easily and securely complete the login process.