Slashdot Mirror

← Back to Stories (view on slashdot.org)

Picture Passwords More Secure than Text

Posted by CowboyNeal on from the my-scribble-is-my-password dept.

Hugh Pickens writes "People possess a remarkable ability for recalling pictures and researchers at Newcastle University are exploiting this characteristic to create graphical passwords that they say are a thousand times more secure than ordinary textual passwords. With Draw a Secret (DAS) technology, users draw an image over a background, which is then encoded as an ordered sequence of cells. The software recalls the strokes, along with the number of times the pen is lifted. If a person chooses a flower background and then draws a butterfly as their secret password image onto it, they have to remember where they began on the grid and the order of their pen strokes. The "passpicture" is recognized as identical if the encoding is the same, not the drawing itself, which allows for some margin of error as the drawing does not have to be re-created exactly. The software has been initially designed for handheld devices such as iPhones, Blackberry and Smartphone, but could soon be expanded to other areas. "The most exciting feature is that a simple enhancement simultaneously provides significantly enhanced usability and security," says computer scientist Jeff Yan."

55 of 261 comments (clear)

  1. Meh. by mingot · · Score: 3, Insightful

    I'd have to train myself to remember the strokes to draw something with the same movements and pen lifts. Sounds like a pain in the nuts to me.

    1. Re:Meh. by wish+bot · · Score: 5, Insightful

      Ordinary people have been doing this for hundreds of years. It's called a SIGNATURE.

      --
      lemonade was a popular drink and it still is
    2. Re:Meh. by B3ryllium · · Score: 5, Funny

      Sounds like a pain in the nuts to me.

      You're doing it wrong.

    3. Re:Meh. by X0563511 · · Score: 2, Insightful

      Hmm, thats an idea. You COULD draw a picture, but if you "sign" a password, that only adds to the complexity of what an intruder must duplicate.

      After a long time doing it, you would get damn fast at it too.

      One problem however is disability. If I had a horrible accident and became a quadrapole, I could still recite my password to someone if need be... good luck doing that with this kind of authentication.

      --
      For large sets, this will be our guide even unto death, for the LORD will work for each type of data it is applied to...
    4. Re:Meh. by rossdee · · Score: 2, Informative

      "If I had a horrible accident and became a quadrapole, I could still recite my password to someone if need be... good luck doing that with this kind of authentication."

      I think you mean quadraplegic. According to Wikipedia:

      A quadrupole is one of a sequence of configurations of electric charge or gravitational mass that can exist in ideal form, but it is usually just part of a multipole expansion of a more complex structure reflecting various orders of complexity.

    5. Re:Meh. by heinousjay · · Score: 5, Funny

      That doesn't really change the original statement. It would indeed be a horrific accident that turned him into a quadrupole, and it would probably be hard to draw stuff afterwards.

      --
      Slashdot - where whining about luck is the new way to make the world you want.
    6. Re:Meh. by ILuvRamen · · Score: 5, Funny

      I could get that dolphin that they taught to paint (look it up) to sign my signature on a check and the bank would still take it. It doesn't even have to be words or letters. As long as someone scribbled my signature, they're not going to reject it so the check's good. Signatures aren't quite the same thing.
      Now my 2 cents, I just design security systems that are so freaky and confusing that hackers just give up because it's too odd. The hacker or otherwise bad person just gives up and is like "wtf is it, broke or just haunted?" If someone made a software suite where you can design your own ridiculous security system with basically unlimited possibilities of whatever the user can dream up, people would have some pretty ridiculous security! Everyone here always complains about security through obscurity. You try opening a ridiculously large-bit-encryption archive file of mine when at the "enter the password" screen, you have to wave the cursor over the password field then type submit in it and click the exit button which reveals a crossword puzzle with only one valid word in it but you have to in fact click the squares so the highlighted letters form a smiley face then within 3 seconds, click on the password field then press tab three times which is the only wat to get you to the now unlocked, real invisible password entry box and type your password in stutter type (doubles of each letter followed by a backspace) and then press the red X in the top right to submit it and open the archive. You aren't getting into that archive! That's so screwy, someone would give up trying to figure out what the hell was going on in minutes. And good luck brute forcing it cuz that'll take all the computers on earth a couple hundred trillion years. Plus it's not that hard of a process to remember when you really think about it. It'd take someone who memorized it like 15 seconds tops to do it all and even if someone watched it, they'd have trouble remembering it or understanding it. They'd have to have a camera recording your keyboard and mouse synchronized with another camera watching the screen and also be able to guess the time requirements. Do all that with an incrementing password (like fishfish2 then next time it's fishfish3) at the end of it and they'd barely be able to solve it if you told them every step. Waaaaaaay better and more secure than drawing a picture on a low res grid.

      --
      Google's Super Secret Search Algorithm: SELECT @search_results FROM internet WHERE @search_results = 'good'
    7. Re:Meh. by Web+Goddess · · Score: 3, Funny

      That sounds like a great password for a Fortress of Solitude, but probably not feasible for mere mortals. I can't decide if you are brilliant or insane.

  2. Prior Art by mlwmohawk · · Score: 2, Informative

    The movie "Safe House" with Patrick Stewart had something similar.

  3. I've heard this before by ShawnCplus · · Score: 5, Funny
    From Article:

    graphical passwords that they say are a thousand times more secure than ordinary textual passwords. Someone a long time ago:

    A picture is worth a thousand words
    --
    Excuse me while I gather the virgin sacrifice and assemble the pentagram required to solve your problem
  4. Why am I having nightmares... by cliveholloway · · Score: 2, Funny

    ...about drawing penises on goatse photographs?

    That would be one way to keep things secure though - it's hard for someone to guess your pass picture if they can't bring themselves to look at the background... :)

    --
    -- Trinity in high heels carrying a whip: The donimatrix - there is no spoonerism
  5. I dont think so by Pazy · · Score: 5, Interesting

    I doubt this will really work, most people when they draw and write so it slightly diffrent each time. They may have to sit down and aim exactly and prepare which will take too much effort for most people. I doubt this will take off its the old security vs convenience. At this point ill take the convenience of a text password.

  6. Sounds hard by dontthink · · Score: 5, Insightful

    I can't even consistently write my signature, let alone some arbitrary picture.

    1. Re:Sounds hard by Feanturi · · Score: 2, Insightful

      I have the same problem with my signature. At one time, it used to be very consistant, and quite legible. Enough people remarked that it looked just like regular handwriting, so I started doing it much more quickly and carelessly since that appears to be the normal way of doing a signature. Now, no matter how I try, I can't make it quite the same way twice, except maybe the capitals. I generally don't get all the letters into the last name either, and which ones make it in changes from one attempt to the next.

  7. Normal signature by LiquidCoooled · · Score: 5, Insightful

    A normal signature is a picture drawn in a certain fashion with a specific flow and strokes.
    We have had signature recognition for a while.
    Whats new?

    --
    liqbase :: faster than paper
    1. Re:Normal signature by schmiddy · · Score: 2, Interesting

      Yeah.. different methods of signature recognition have been around for quite some time, and never really caught on. A friend just did his senior undergrad thesis on a survey of techniques for signature detection, and it's actually a pretty informative read. Long story short.. even the advanced models have too high false-positive rates, especially from skilled forgers who have time to practice copying your signature at home, or even casual over-the-shoulder copying.

      The only real future use of this I see is as one component in a highly secure, long-term, yet convenient, authentication mechanism.. perhaps for accessing a lockbox at a bank, something you'd need to have around for many years without remembering and changing a password. And even then, they'd have to additionally use at least "something you know" (name,SSN, etc that you won't forget) and possibly another "something you have" (fingerprint reading, perhaps) in order to get the false positive and false negative rates acceptably low.

      --
      http://cltracker.net -- powerful craigslist multi-city search
  8. Easier in Asia... by Anonymous Coward · · Score: 4, Interesting

    You say that, but it's EXACTLY what you have to do to learn kanji or kana... or hanzi, for the Chinese.

    That's right, there's a proper way to write every one of the thousands of characters, right down to stroke order and placement.

    1. Re:Easier in Asia... by mingot · · Score: 2, Insightful

      I'll bet they'll just pick a character instead of drawing a picture.

    2. Re:Easier in Asia... by Nexx · · Score: 4, Interesting

      Not only that, but people who learn it the "wrong" way quite often write it the wrong way throughout their lives. I experience this a lot with my parents -- the stroke order they learned is different from the stroke order I learned, so anytime I watch them write, it looks a bit odd.

    3. Re:Easier in Asia... by ThePengwin · · Score: 2, Funny

      Sounds like you were being harassed by the handwriting nazis!

    4. Re:Easier in Asia... by fph+il+quozientatore · · Score: 3, Funny

      Sounds like a pain in the nuts to me.

      You say that, but it's EXACTLY what you have to do to learn kanji or kana... or hanzi, for the Chinese. Therefore, learning Chinese or Japanese is a pain in the nuts. Nothing to see here.
      --
      My first program:

      Hell Segmentation fault

    5. Re:Easier in Asia... by corifornia2 · · Score: 2, Funny

      I'm all about security . . . but I'm lazy. So I'd probably just draw characters as well. But I'd draw four of them for security's sake. B==D

  9. Damnable Security! by roguetrick · · Score: 5, Insightful

    I wonder how many users will just end up drawing Stars, Hearts, and Smiley Faces?

    --
    -The world would be a better place if everyone had a hoverboard
    1. Re:Damnable Security! by Enderandrew · · Score: 2

      Exactly what I was thinking.

      I have trouble drawing stick figures.

      --
      http://blindscribblings.com - Tasty pop-culture in conceptual fashion.
    2. Re:Damnable Security! by insertwackynamehere · · Score: 5, Funny

      I smell pictionary attacks!!

      Imagine pictures of common passwords/objects being drawn everywhere on the screen at different rotations and scales in rapid succession.. or just a brute forcer which didn't even make legible images 99% of the time

  10. And "shoulder surfing". by khasim · · Score: 4, Insightful

    If you have to draw a picture to login, it's going to be very easy for people to see what you're drawing just by being near you.

    With typed passwords that is a lot more difficult.

    1. Re:And "shoulder surfing". by Karl0Erik · · Score: 5, Funny

      Well, they could just cover the drawing in asterisks.

      Oh, wait.

    2. Re:And "shoulder surfing". by megaditto · · Score: 5, Funny

      Draw the goatse man. That'll teach them to spy on you!

      Now if only I could figure out how to paste that troll's ascii in here...

      --
      Obama likes poor people so much, he wants to make more of them.
    3. Re:And "shoulder surfing". by TheGeneration · · Score: 3, Funny

      Okay, so something like 99% of users are going to use happy faces for their drawn password. That'd be so difficult to crack.

      --


      The Generation
      I'd say something witty here, but I'm not that bright.
    4. Re:And "shoulder surfing". by fredklein · · Score: 2, Interesting

      it's far more difficult to watch someone's hand and imagine exactly how they typically draw a password.

      It's not as difficult as you think. It's a standard magicians trick to secretly watch a persons hand/pen movements and then 'magically' re-create the drawing they made.

    5. Re:And "shoulder surfing". by Anonymous Coward · · Score: 5, Informative

      here's the short version:

      =8{O}8=

    6. Re:And "shoulder surfing". by badran · · Score: 4, Funny

      ...And then get the password is too short error...

  11. 2 characters. by Kaenneth · · Score: 5, Insightful

    Or you could add 2 alpha-numeric characters to an existing text password, for more than 1000 times security.

    1. Re:2 characters. by Dirtside · · Score: 3, Insightful

      Adding two alphanumeric characters (a-z, A-Z, 0-9, for 62 characters) would increase the keyspace by a lot (a factor of 3,844, to be precise), but it doesn't increase overall security by that much except against brute force attackers. It certainly doesn't make it a thousand times harder to shoulder-surf, or keylog, or social engineer, or...

      --
      "Destroy science and religion. Science would re-emerge exactly the same; but not religion." - Penn Jillette, paraphrased
    2. Re:2 characters. by QuoteMstr · · Score: 2, Insightful

      I'm a skeptic, but at least it has the social engineering thing going for it.

      "Hey, Susan. I'm Bob from IT. We're doing a company-wide password security survey, and I need to get yours down. Can you let me know what it is?"

      "Well, hi Bob. It's sort of a dopey-looking antelope with horns and big teeth."

      "Ah. Thanks." *click*

  12. More Secure? by 56 · · Score: 2, Insightful
    It seems to me that this would drastically increase the security of passwords from attack by machines but would make them more susceptible to attack from humans.

    There are only so many places to start drawing your password on a picture and a human would recognize that. People would probably draw birds in the sky and dogs on the ground, right? Also, I would guess that people would make linear leaps with their pictures: someone will draw a bird, and not a fish, in a picture of a tree.

    That said, I'm not saying that this isn't a worthwhile endeavor, just that it wouldn't necessarily be as secure as it looks at first glance.

  13. Re:I don't belive it. by JackieBrown · · Score: 2, Insightful

    Will we need to draw a new picture every 90 days?

  14. Easy dictionary attack by Doppler00 · · Score: 3, Insightful

    How many people will use a picture password of a stick man, tree, or a happy sun?

  15. As nice as this sounds... by John+Pfeiffer · · Score: 5, Funny

    ...the reality is that this story should probably be tagged 'security through never-being-able-to-access-your-stuff-again'

    --

    Friend: "The NIC is misconfigured..." Me: "No prob, I'll just telnet in and fix it." *Silence*
  16. Re:I don't belive it. by Anonymous Coward · · Score: 3, Insightful

    You draw whatever picture you want. The background image is just to give you a frame of reference so you know where you started.

    I think most people will associate the same things to the same background (eg. flowers->bee) resulting in even less combinations... also, the universe of "drawable things" is smaller than the universe of words, and that is smaller than the universe of pass...

  17. Two serious problems by adminstring · · Score: 5, Interesting

    1. An artistically-inclined person looking over your shoulder might be able to draw your image about as well as you can. With a conventional keyboard password, I can block the keyboard with my body so others can't see what I'm typing, and I can pretend to press keys that aren't in my password so even if they can see, they are thrown off. There is less you can do to block a screen you have to look at to draw properly.

    2. Some people's hands shake when they've had too much caffeine, most people's fingers get stiff when they've been out in the cold, and some people have degenerative diseases which make typing a one-letter-at-a-time proposition. Drawing would be very difficult in all of these circumstances. Perhaps this is why TFA says that 5% of users couldn't recreate their image within three attempts a week after first coming up with it.

    I don't think this technology is going anywhere any time soon.

    --
    My truck is like a series of tubes.
  18. New password == old password? by Rodyland · · Score: 5, Funny

    8==D


    Who'd have guessed you could use the same password in both systems?

    1. Re:New password == old password? by VGPowerlord · · Score: 5, Funny

      Password isn't long enough.

      And that's from the graphical login system! :P

      --
      GLaDOS for President 2016! "Well here we are again. It's always such a pleasure." -- GLaDOS, 2011
  19. DDR Passwords by iago · · Score: 5, Funny

    At least my idea for a Dance, Dance, Revolution password authentication scheme is still intact.

    Patent pending, patent pending, patent pending.

    --
    Worst Sig Ever
  20. Been there. Done that. by Kainaw · · Score: 3, Interesting

    If you remove the background picture and the act of displaying what you draw to everyone within eye-shot, I've already done that at http://shaunwagner.com/index.html?page=Projects%2FJavascript%2FMouse+Password

    Does it work? No. It is far too difficult to draw the same image twice without seeing what you are drawing. If you can see what you are drawing, so can everyone else - then they can draw the same image.

    --
    The previous comment is purposely vague and generalized, but all of the facts are completely true.
  21. Similar Idea for PalmOS - Prior Art? by jerel · · Score: 2, Informative
    Back when I depended on my Palm III for keeping track of my schedule and contacts, I also stored credit card numbers and passcodes etc. that needed to be secure. I purchased a product called OnlyMe which allowed pseudo-graphical entry of passwords. They encouraged you to enter a password using a series of strokes without lifting your stylus. From their site:

    To allow extremely quick and easy password input, OnlyMe's keys allow you to "press" them without lifting your stylus from the surface of the device! You may choose a password composed of keys that allow you to enter the password as one, quick sweep of the stylus - a single gesture of your own design. This quick sweep of the stylus may start from or go outside the bounds of the OnlyMe "window." ... For a high level of security, we recommend that you use two gestures of at least four keys each. With this level of security, an intruder's best bet for accessing your data is to contract with someone with specialized knowledge to access the device's memory.
    FWIW, IANAC but I estimate that using their two-gesture recommendation would result in something over 2 million possible passwords. This is a great piece of software and well worth $20 for anybody still using one of these for anything important.

    It's a small conceptual leap to go from this 1998 stroke-based password idea to the present idea of drawing a picture to capture strokes which are then turned into a password. Looks like prior art to me!
    --
    Some days it's just not worth chewing through the restraints.
  22. password expired by dfries · · Score: 2, Funny

    Ordinary people have been doing this for hundreds of years. It's called a SIGNATURE.

    That might be a good idea until you get one of these messages.
    Password expired, please change your name.

  23. Please.. dear GOD no! by ps3udonym · · Score: 2, Funny

    I beg of you.. Imagine the call..

    User "I have forgotten my password"

    admin "let me just reset it for you, the default password is a square with a star inside started at grid co-ordinates 0,3 going to 0,10 then down to 10,10... Don't forget to lift your pen at each courner"

    Just kill me now please.

  24. minimum requirements by PineGreen · · Score: 4, Funny

    Oh no:

    Password too simple. Password must be at least 8 strokes with at least one diagonal one and one wiggly one.

  25. SHA by h4rm0ny · · Score: 3, Insightful

    But on the subject of security, how would these passwords be stored? One nice thing with plaintext is that you never have to store anyone's actual password, only the hash of it. I suppose you could still create a hash of "1. stroke 47degrees 3%, 2, stroke 270degrees 22%" or whatever the password device spits out, but it seems to me that as this system requires a more sophisticated way of interpreting fuzzily matched movements, there might be problems with this approach or it could introduce weaknesses.

    You could use some algorithm to simplify the users drawing, rounding angles (I punned! :D ), adjusting lengths, perhaps. But this would probably have the effect of narrowing the password space making it easier to crack the passwords. I'm not an expert in this area, I'd be interested to know if they've thought about this or if anyone else knows a bit more about it.

    --

    Aide-toi, le Ciel t'aidera - Jeanne D'Arc.
    1. Re:SHA by mattpalmer1086 · · Score: 2, Insightful

      You miss the point - there is no single way of drawing the "same" pass picture - only more or less similar ways. The values in your XML file you talk about would be slightly different each time you drew the pass picture.

      Since even only a single bit difference to a hash algorithm generates an entirely different result, this means you can't hash that file and expect it to match a hash of the "same" pass picture on the server, unless you draw the pass picture absolutely identically every time.

      So how do you securely store a user pass-picture on the server without risking its compromise if the server was hacked? Which was the point of the GP.

    2. Re:SHA by Darius_Acriter · · Score: 2, Informative

      They are not storing the picture, but rather the way you draw the picture. Let's say they break the drawing area up into 9 squares. What they are encoding is the steps. Pen down quad 2,2 to 2,1 to 1,1, pen up. pen down quad 2,2 to 2,3 to 3,3 to 3,2, to 2,2 pen up. As long as I stay within the 'resolution' of their encoding I will be generating the same hashed file

  26. Re:I don't belive it. by Rob+Simpson · · Score: 3, Interesting

    Yes. Also the picture will require at least one instance each of cross-hatching, scumbling, and stippling.

  27. Massive Cocks by sqldr · · Score: 3, Funny

    I can already see the movie scene where they crack the chief of the FBI's laptop by guessing his pictogram.

    Stacey: Try drawing a massive cock..

    Arnie: I'm in. Lets get to work

    --
    I wrote my first program at the age of six, and I still can't work out how this website works.
  28. Re:Hear hear by Das+Modell · · Score: 2, Funny

    Some CAPTCHAs are so difficult that it seems only computers could solve them.