Starting around 1999, a great many graphical password schemes have been proposed as
alternatives to text-based password authentication. We provide a comprehensive overview …

Touch screens are an increasingly common feature on personal computing devices,
especially smartphones, where size and user interface advantages accrue from …

Many secure systems rely on a “human in the loop” to perform security-critical functions.
However, humans often fail in their security roles. Whenever possible, secure system …

We propose and examine the usability and security of Cued Click Points (CCP), a cued-
recall graphical password technique. Users click on one point per image for a sequence of …

Contextual bandit algorithms have become popular tools in online recommendation and
advertising systems.\emphOffline evaluation of the effectiveness of new algorithms in these …

Graphical passwords were proposed as an alternative to overcome the inherent limitations
of text-based passwords, inspired by research that shows that the graphical memory of …

We report the results of the first large-scale empirical analysis of password implementations
deployed on the Internet. Our study included 150 websites which offer free user accounts for …

This paper presents an integrated evaluation of the Persuasive Cued Click-Points graphical
password scheme, including usability and security evaluations, and implementation …

We develop a model to identify the most likely regions for users to click in order to create
graphical passwords in the PassPoints system. A PassPoints password is a sequence of …

Draw a secret (DAS) is a representative graphical password scheme. Rigorous theoretical
analysis suggests that DAS supports an overall password space larger than that of the …