A Survey on Recognition Based Graphical User Authentication Algorithms

TL;DR

This survey reviews recognition-based graphical user authentication algorithms, analyzing their usability and security aspects, highlighting their limitations, attack vulnerabilities, and comparing them based on standards.

Contribution

It provides a comprehensive comparison of eight recognition-based graphical authentication algorithms focusing on usability and security issues.

Findings

Identifies key drawbacks and attack vulnerabilities of existing algorithms.

Highlights the trade-off between usability and security in graphical authentication.

Provides a comparative analysis based on ISO standards and attack patterns.

Abstract

Nowadays, user authentication is one of the important topics in information security. Strong textbased password schemes could provide with certain degree of security. However, the fact that strong passwords are difficult to memorize often leads their owners to write them down on papers or even save them in a computer file. Graphical authentication has been proposed as a possible alternative solution to textbased authentication, motivated particularly by the fact that humans can remember images better than text. In recent years, many networks, computer systems and Internet based environments try used graphical authentication technique for their users authentication. All of graphical passwords have two different aspects which are usability and security. Unfortunately none of these algorithms were being able to cover both of these aspects at the same time. In this paper, we described eight recognition based authentication algorithms in terms of their drawbacks and attacks. In the next section, the usability standards from ISO and the related attributes for graphical user authentication usability are discussed. The related attack patterns for graphical user authentication security part are also discussed. Finally, a comparison table of all recognition based algorithms is presented based on ISO and attack patterns standards.