Ciphercard: A token-based approach against camera-based shoulder surfing attacks on common touchscreen devices
We present CipherCard, a physical token that defends against shoulder-surfing attacks on user authentication on capacitive touchscreen devices. When CipherCard is placed over a touchscreen’s pin-pad, it remaps a user’s touch point on the physical token to a different location on the pin-pad. It henc...
Saved in:
| Main Authors: | , , , , , , |
|---|---|
| Format: | text |
| Language: | English |
| Published: |
Institutional Knowledge at Singapore Management University
2015
|
| Subjects: | |
| Online Access: | https://ink.library.smu.edu.sg/sis_research/7984 https://ink.library.smu.edu.sg/context/sis_research/article/8987/viewcontent/Ciphercard.pdf |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Singapore Management University |
| Language: | English |
| id |
sg-smu-ink.sis_research-8987 |
|---|---|
| record_format |
dspace |
| spelling |
sg-smu-ink.sis_research-89872023-08-15T05:38:41Z Ciphercard: A token-based approach against camera-based shoulder surfing attacks on common touchscreen devices SEYED, Teddy YANG, Xing-Dong TANG, Anthony GREENBERG, Saul GU, Jiawei ZHU, Bin CIAO, Xiang We present CipherCard, a physical token that defends against shoulder-surfing attacks on user authentication on capacitive touchscreen devices. When CipherCard is placed over a touchscreen’s pin-pad, it remaps a user’s touch point on the physical token to a different location on the pin-pad. It hence translates a visible user password into a different system password received by a touchscreen, but is hidden from observers as well as the user. CipherCard enhances authentication security through Two-Factor Authentication (TFA), in that both the correct user password and a specific card are needed for successful authentication. We explore the design space of CipherCard, and describe three implemented variations each with unique capabilities. Based on user feedback, we discuss the security and usability implications of CipherCard, and describe several avenues for continued exploration. 2015-01-01T08:00:00Z text application/pdf https://ink.library.smu.edu.sg/sis_research/7984 info:doi/10.1007/978-3-319-22668-2_34 https://ink.library.smu.edu.sg/context/sis_research/article/8987/viewcontent/Ciphercard.pdf http://creativecommons.org/licenses/by-nc-nd/4.0/ Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University Capacitive touchscreen PIN entry Security Shoulder-surfing attack Graphics and Human Computer Interfaces |
| institution |
Singapore Management University |
| building |
SMU Libraries |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
SMU Libraries |
| collection |
InK@SMU |
| language |
English |
| topic |
Capacitive touchscreen PIN entry Security Shoulder-surfing attack Graphics and Human Computer Interfaces |
| spellingShingle |
Capacitive touchscreen PIN entry Security Shoulder-surfing attack Graphics and Human Computer Interfaces SEYED, Teddy YANG, Xing-Dong TANG, Anthony GREENBERG, Saul GU, Jiawei ZHU, Bin CIAO, Xiang Ciphercard: A token-based approach against camera-based shoulder surfing attacks on common touchscreen devices |
| description |
We present CipherCard, a physical token that defends against shoulder-surfing attacks on user authentication on capacitive touchscreen devices. When CipherCard is placed over a touchscreen’s pin-pad, it remaps a user’s touch point on the physical token to a different location on the pin-pad. It hence translates a visible user password into a different system password received by a touchscreen, but is hidden from observers as well as the user. CipherCard enhances authentication security through Two-Factor Authentication (TFA), in that both the correct user password and a specific card are needed for successful authentication. We explore the design space of CipherCard, and describe three implemented variations each with unique capabilities. Based on user feedback, we discuss the security and usability implications of CipherCard, and describe several avenues for continued exploration. |
| format |
text |
| author |
SEYED, Teddy YANG, Xing-Dong TANG, Anthony GREENBERG, Saul GU, Jiawei ZHU, Bin CIAO, Xiang |
| author_facet |
SEYED, Teddy YANG, Xing-Dong TANG, Anthony GREENBERG, Saul GU, Jiawei ZHU, Bin CIAO, Xiang |
| author_sort |
SEYED, Teddy |
| title |
Ciphercard: A token-based approach against camera-based shoulder surfing attacks on common touchscreen devices |
| title_short |
Ciphercard: A token-based approach against camera-based shoulder surfing attacks on common touchscreen devices |
| title_full |
Ciphercard: A token-based approach against camera-based shoulder surfing attacks on common touchscreen devices |
| title_fullStr |
Ciphercard: A token-based approach against camera-based shoulder surfing attacks on common touchscreen devices |
| title_full_unstemmed |
Ciphercard: A token-based approach against camera-based shoulder surfing attacks on common touchscreen devices |
| title_sort |
ciphercard: a token-based approach against camera-based shoulder surfing attacks on common touchscreen devices |
| publisher |
Institutional Knowledge at Singapore Management University |
| publishDate |
2015 |
| url |
https://ink.library.smu.edu.sg/sis_research/7984 https://ink.library.smu.edu.sg/context/sis_research/article/8987/viewcontent/Ciphercard.pdf |
| _version_ |
1779156920437833728 |