Noisy password security technique

Abstract

One-time password makes it more difficult to gain unauthorized access to restricted resources. In our previous work we designed a one-time password scheme that implements our noisy password scheme. The previous work proved to be a secure password entry scheme, but was somehow difficult for users. In this paper, we propose a technique for improving the security of password-based applications by incorporating predefined keystroke patterns into the password. The proposed system attempts to alleviate the problem of shoulder surfing by inserting different noise patterns in the password making. The user is authenticated by totally different password every time. The noisy password constitute of several parts, the actual password and additional noisy parts. Different password parts will be entered using keystroke patterns not characters. The noisy parts are proven to be robust against any hacking attacks. Experimental results give good indication of the ease of utilization of the new system with low error rates.