Skip to Main content Skip to Navigation
Conference papers

Security Analysis and Psychological Study of Authentication Methods with PIN Codes

Abstract : Touch screens have become ubiquitous in the past few years, like for instance in smartphones and tablets. These devices are often the entry door to numerous information systems, hence having a secure and practical authentication mechanism is crucial. In this paper, we examine the complexity of different authentication methods specifically designed for such devices. We study the widely spread technology to authenticate a user using a Personal Identifier Number code (PIN code). Entering the code is a critical moment where there are several possibilities for an attacker to discover the secret. We consider the three attack models: a Bruteforce Attack (BA) model , a Smudge Attack (SA) model, and an Observation Attack (OA) model where the attacker sees the user logging in on his device. The aim of the intruder is to learn the secret code. Our goal is to propose alternative methods to enter a PIN code. We compare such different methods in terms of security. Some methods require more intentional resources than other, this is why we performed a psychological study on the different methods to evaluate the users' perception of the different methods and their usage.
Complete list of metadata

Cited literature [29 references]  Display  Hide  Download
Contributor : Jannik Dreier Connect in order to contact the contributor
Submitted on : Wednesday, April 25, 2018 - 10:56:41 AM
Last modification on : Friday, February 4, 2022 - 3:27:19 AM
Long-term archiving on: : Monday, September 24, 2018 - 11:07:50 PM


Files produced by the author(s)



Xavier Bultel, Jannik Dreier, Matthieu Giraud, Marie Izaute, Timothée Kheyrkhah, et al.. Security Analysis and Psychological Study of Authentication Methods with PIN Codes. RCIS 2018 - IEEE 12th International Conference on Research Challenges in Information Science, May 2018, Nantes, France. pp.1--11, ⟨10.1109/RCIS.2018.8406648⟩. ⟨hal-01777898⟩



Record views


Files downloads