A Pattern-Based Password Authentication Scheme for Minimizing Shoulder Surfing Attack

M I Awang, M A Mohamed, R R Mohamed, A Ahmad, N A Rawi


The user usually uses password to avoid the attacks like a dictionary attack, brute force attack and shoulder surfing attack which is the famous attack nowadays. The shoulder surfing attack is a direct observation technique by watching over the user’s shoulder when they enter their password to get information. The most common authentication method used by the user is textual password. But, the textual password has many disadvantages because it is vulnerable to attack as it tends to shoulder surfing attack. In this project, a pattern-based password authentication will develop to overcome this problem. Using this scheme, the user needs to select the type of pattern that they like during registration. To login to their account, the user needs to enter the password in the form of the textual password in ordering manner based on a pattern that they choose during registration. The text password grid presented with a different style as it filled with random objects whether characters, numbers or images. This method is suitable to minimizing shoulder surfing attack as it can improve the security of user’s password and they can efficiently login to the system.


user authentication; shoulder surfing; pattern-based; grid selection; recall based.

Full Text:


DOI: http://dx.doi.org/10.18517/ijaseit.7.3.1517


Published by INSIGHT - Indonesian Society for Knowledge and Human Development