Title :
User authentication by cognitive passwords: an empirical assessment
Author :
Zviran, Moshe ; Haga, William J.
Author_Institution :
US Naval Postgraduate Sch., Monterey, CA, USA
Abstract :
The concept of cognitive passwords is introduced, and their use as a method to overcome the dilemma of passwords that are either difficult to remember or easily guessed is suggested. Cognitive passwords are based on personal facts, interests, and opinions that are likely to be easily recalled by a user. A brief dialogue between a user and a system, where a user provides a system with exact answers to a rotating set of questions, is suggested to replace the traditional authentication method using a single password. The findings of an empirical investigation focusing on memorability and ease-of-guessing of cognitive passwords, are reported. They demonstrate that cognitive passwords are easier to recall than conventional passwords, while being difficult for others, even those close to the users, to guess
Keywords :
security of data; cognitive passwords; empirical assessment; user authentication; Associative memory; Control systems; Cryptography; Educational institutions; Information security; Information systems; Keyboards; Message authentication; Safety;
Conference_Titel :
Information Technology, 1990. 'Next Decade in Information Technology', Proceedings of the 5th Jerusalem Conference on (Cat. No.90TH0326-9)
Conference_Location :
Jerusalem
Print_ISBN :
0-8186-2078-1
DOI :
10.1109/JCIT.1990.128279
