Article

Passwords you'll never forget, but can't recall

Authors:

Daphna Weinshall,

Scott KirkpatrickAuthors Info & Claims

CHI EA '04: CHI '04 Extended Abstracts on Human Factors in Computing Systems

Pages 1399 - 1402

https://doi.org/10.1145/985921.986074

Published: 24 April 2004 Publication History

Abstract

We identify a wide range of human memory phenomena as potential certificates of identity. These "imprinting" behaviors are characterized by vast capacity for complex experiences, which can be recognized without apparent effort and yet cannot be transferred to others. They are suitable for use in near zero-knowledge protocols, which minimize the amount of secret information exposed to prying eyes while identifying an individual. We sketch several examples of such phenomena[1-3], and apply them in secure certification protocols. This provides a novel approach to human-computer interfaces, and raises new questions in several classic areas of psychology.

References

[1]

R. N. Shepard (1967). Recognition memory for words, sentences, and pictures. J Verb Learn Verb Behav 6, 156--163.

[2]

Reber, A. S. (1967). Implicit learning of artificial grammars. Journal of Verbal Learning and Verbal Behavior 6, 855--863.

[3]

A. Salaso, R. M. Shiffrin, and T. C. Feustel (1985). Building Permanent Memory Codes: Codification and Repetition Effects in Word Identification. Journal of Experimental Psychology: General 114(1), 50--77.

[4]

L. Standing, J. Conezio, and R. N. Haber (1970). Perception and memory for pictures: single trial learning of 2500 visual stimuli. Psychol. Sci. 19, 73--74.

[5]

Cave, B. C. (1997). Very long-lasting priming in picture naming. Psychol. Sci 8, 322--325.

[6]

Perruchet, P. and Pacteau, C. (1990). Synthetic grammar learning: Implicit rule abstraction or explicit fragmentary knowledge? Journal of Experimental Psychology: General 119, 264--275.

[7]

E. Tulving, D. L. Schacter, H. A. Stark (1982). Priming effects in word-fragment completion are independent of recognition memory. Journal of Experimental Psychology: Learning, Memory & Cognition 8(4), 336--342.

[8]

G. Musen and A. Treisman (1990). Implicit and Explicit Memory for Visual Patterns. J Exp Psychol Learn Mem Cogn 16(1), 127--37.

[9]

A. Karni and D. Sagi (1993). The time course of learning a visual skill. Nature 365, 250--252.

[10]

R. Dhamija and A. Perrig (2000). Déja vu: A user study using images for authentication. In Proceedings of the 9th USENIX Security Symposium, 2000.

Digital Library

[11]

A press report is given at http://research.microsoft.com/displayArticle.aspx?id=417

[12]

http://www.atstake.com/research/lc

[13]

B. Rossion and G. Pourtois (2001). Revisiting Snodgrass and Vanderwart's object database: Color and Texture improve Object Recognition. Presented at VisionScienceS, Sarasota, FL, May, 2001. Abstract in Journal of Vision.

[14]

J. G. Snodgrass, and M. Vanderwart (1980). A standardized set of 260 pictures: Norms for name agreement, image agreement, familiarity, and visual complexity. Journal of Experimental Psychology: Learning, Memory & Cognition, 6:174--215.

[15]

M. Wilson (2003). MRC Psycholinguistic Database: Machine Usable Dictionary, Version 2.00. Rutherford Appleton Laboratory, Oxfordshire, England.

[16]

W. van Heuven (2003). Pseudo: a nonword/pseudoword generator. NICI, Univeristy of Nijmegen, http://www.nici.kun.nl/~heuven/.

Cited By

Edward ASuru HGiro M(2023)A Comparison Between Position-Based and Image-Based Multi-Layer Graphical user Authentication SystemOriental journal of computer science and technology10.13005/ojcst16.01.0316:01(46-60)Online publication date: 30-May-2023
https://doi.org/10.13005/ojcst16.01.03
Yadav BSingh KSaxena A(2022)Video Based Graphical Password Authentication SystemProceedings of International Conference on Network Security and Blockchain Technology10.1007/978-981-19-3182-6_7(78-90)Online publication date: 15-Jun-2022
https://doi.org/10.1007/978-981-19-3182-6_7
Mayrhofer RSigg S(2021)Adversary Models for Mobile Device AuthenticationACM Computing Surveys10.1145/347760154:9(1-35)Online publication date: 8-Oct-2021
https://dl.acm.org/doi/10.1145/3477601
Show More Cited By

Index Terms

Passwords you'll never forget, but can't recall
1. Human-centered computing
  1. Human computer interaction (HCI)
    1. HCI theory, concepts and models
  2. Interaction design
    1. Interaction design theory, concepts and paradigms

Recommendations

System-Assigned Passwords: The Disadvantages of the Strict Password Management Policies

After Morris and Thompson wrote the first paper on password security in 1979, strict password policies have been enforced to make sure users follow the rules on passwords. Many such policies require users to select and use a system-generated password. The ...
Effectiveness of image-based mnemonic techniques for enhancing the memorability and security of user-generated passwords

Complex passwords are hard to remember, so people often pick simple passwords, write complex ones down, and reuse the same password across multiple accounts. Proactive password checking (PPC) restrictions and mnemonic techniques can enhance password ...
We Will Never Forget: Usernames and Passwords, Internet Address & Password Logbook 5x8 Inch

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

cover image ACM Conferences

CHI EA '04: CHI '04 Extended Abstracts on Human Factors in Computing Systems

April 2004

975 pages

ISBN:1581137036

DOI:10.1145/985921

Conference Chairs:
Elizabeth Dykstra-Erickson
Kinoma
,
Manfred Tscheligi
CURE, Austria

Copyright © 2004 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 24 April 2004

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Article

Conference

CHI04

Sponsor:

CHI04: CHI 2004 Conference on Human Factors in Computing Systems

April 24 - 29, 2004

Vienna, Austria

Acceptance Rates

Overall Acceptance Rate 6,164 of 23,696 submissions, 26%

Upcoming Conference

CHI 2025

Sponsor:
sigchi

ACM CHI Conference on Human Factors in Computing Systems

April 26 - May 1, 2025

Yokohama , Japan

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

44
Total Citations
View Citations
1,149
Total Downloads

Downloads (Last 12 months)16
Downloads (Last 6 weeks)3

Reflects downloads up to 13 Feb 2025

Other Metrics

View Author Metrics

Citations

Cited By

Edward ASuru HGiro M(2023)A Comparison Between Position-Based and Image-Based Multi-Layer Graphical user Authentication SystemOriental journal of computer science and technology10.13005/ojcst16.01.0316:01(46-60)Online publication date: 30-May-2023
https://doi.org/10.13005/ojcst16.01.03
Yadav BSingh KSaxena A(2022)Video Based Graphical Password Authentication SystemProceedings of International Conference on Network Security and Blockchain Technology10.1007/978-981-19-3182-6_7(78-90)Online publication date: 15-Jun-2022
https://doi.org/10.1007/978-981-19-3182-6_7
Mayrhofer RSigg S(2021)Adversary Models for Mobile Device AuthenticationACM Computing Surveys10.1145/347760154:9(1-35)Online publication date: 8-Oct-2021
https://dl.acm.org/doi/10.1145/3477601
Khadka MYang G(2020)Implementation of an Authentication System GTPassAdvanced Multimedia and Ubiquitous Engineering10.1007/978-981-15-9309-3_23(159-164)Online publication date: 17-Dec-2020
https://doi.org/10.1007/978-981-15-9309-3_23
Hamid SBawany NKhan S(2019)AcSIS: Authentication System Based on Image SplicingEngineering, Technology & Applied Science Research10.48084/etasr.30609:5(4808-4812)Online publication date: 9-Oct-2019
https://doi.org/10.48084/etasr.3060
Cherdmuangpak NAnusas-amonkul TLimthanmaphon B(2017)Two factor image-based password authentication for junior high school students2017 14th International Joint Conference on Computer Science and Software Engineering (JCSSE)10.1109/JCSSE.2017.8025913(1-6)Online publication date: Jul-2017
https://doi.org/10.1109/JCSSE.2017.8025913
Shailesh SIlyas H(2017)Incorporating homomorphic encryption with hybrid numerical authentication for blind computer users2017 International Conference on Intelligent Computing, Instrumentation and Control Technologies (ICICICT)10.1109/ICICICT1.2017.8342620(536-541)Online publication date: Jul-2017
https://doi.org/10.1109/ICICICT1.2017.8342620
Bijoy JKavitha VRadhakrishnan BSuresh L(2017)A Graphical Password Authentication for analyzing legitimate user in online social network and secure social image repository with metadata2017 International Conference on Circuit ,Power and Computing Technologies (ICCPCT)10.1109/ICCPCT.2017.8074325(1-7)Online publication date: Apr-2017
https://doi.org/10.1109/ICCPCT.2017.8074325
Boldyreva AChen SDupont PPointcheval D(2017)Human Computing for Handling Strong Corruptions in Authenticated Key Exchange2017 IEEE 30th Computer Security Foundations Symposium (CSF)10.1109/CSF.2017.31(159-175)Online publication date: Aug-2017
https://doi.org/10.1109/CSF.2017.31
Kim JSharma GCardenas IKim DPrabakar NIyengar S(2017)DynamicPIN: A Novel Approach towards Secure ATM Authentication2017 International Conference on Computational Science and Computational Intelligence (CSCI)10.1109/CSCI.2017.11(68-73)Online publication date: Dec-2017
https://doi.org/10.1109/CSCI.2017.11
Show More Cited By

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Figures

Tables

Media

View Table of Conten