Skip to Main content Skip to Navigation
Conference papers

CPMap: Design of Click-Points Map-Based Graphical Password Authentication

Abstract : As traditional textual passwords suffer from many known limitations, graphical passwords (GPs) are proposed as one promising alternative to complement the existing authentication systems. To obtain a large password space, map-based GPs (geographical passwords) have been developed that allow users to choose one or more places on a map for authentication. For example, PassMap requires users to choose two places as their credentials, and GeoPass enables users to click only one place for authentication. Some research studies have reported that choosing only one place as a password may be not secure enough, whereas selecting two places may decrease the system usability. In this work, we first conducted a study to learn how users would choose two places under PassMap, and found that users may choose two similar locations due to time consideration. Motivated by this observation, we then design CPMap, a click-points map-based GP scheme that allows users to choose one place on a world map at first and then click a point or an object on an image relating to the previously selected location. To investigate the performance of CPMap, we conducted another user study with up to 50 participants. It is found that users could achieve promising results with our scheme in the aspects of both security and usability.
Document type :
Conference papers
Complete list of metadata

Cited literature [36 references]  Display  Hide  Download
Contributor : Hal Ifip <>
Submitted on : Thursday, February 21, 2019 - 4:18:31 PM
Last modification on : Friday, November 8, 2019 - 3:06:02 PM
Long-term archiving on: : Wednesday, May 22, 2019 - 4:49:06 PM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Weizhi Meng, Fei Fei, Lijun Jiang, Zhe Liu, Chunhua Su, et al.. CPMap: Design of Click-Points Map-Based Graphical Password Authentication. 33th IFIP International Conference on ICT Systems Security and Privacy Protection (SEC), Sep 2018, Poznan, Poland. pp.18-32, ⟨10.1007/978-3-319-99828-2_2⟩. ⟨hal-02023732⟩



Record views


Files downloads