An analysis of Persuasive Text Passwords

Text-based password is widely considered as the most ubiquitous authentication scheme in computer systems nowadays. However, text-based password are vulnerable to some attacks such as brute-fore attack and dictionary-based attack. Consequently, a large number of research has focused on enhancing the security strength of text-based password. Persuasive Text Passwords (PTP) is a technique to improve password strength by adding some random characters to user´s password. In this paper, we compare PTP with some common password policies. Thanks to this, some flaws of PTP are determined. An improvement of PTP is proposed to alleviate its drawbacks. The improvement is implemented by combining PTP with a password policy. The experimental results show that the new version of PTP is better than the original version in both security and usability.