User authentication by cognitive passwords: An empirical assessment

Moshe Zviran, William J. Haga

Research output: Contribution to conferencePaperpeer-review

Abstract

The concept of cognitive passwords is introduced, and their use as a method to overcome the dilemma of passwords that are either difficult to remember or easily guessed is suggested. Cognitive passwords are based on personal facts, interests, and opinions that are likely to be easily recalled by a user. A brief dialogue between a user and a system, where a user provides a system with exact answers to a rotating set of questions, is suggested to replace the traditional authentication method using a single password. The findings of an empirical investigation, focusing on memorability and ease-of-guessing of cognitive passwords, are reported. They demonstrate that cognitive passwords are easier to recall than conventional passwords, while being difficult for others, even those close to the users, to guess.

Original languageEnglish
Pages137-144
Number of pages8
StatePublished - Oct 1990
Externally publishedYes
EventProceedings of the 5th Jerusalem Conference on Information Technology - Jerusalem, Isr
Duration: 22 Oct 199025 Oct 1990

Conference

ConferenceProceedings of the 5th Jerusalem Conference on Information Technology
CityJerusalem, Isr
Period22/10/9025/10/90

Fingerprint

Dive into the research topics of 'User authentication by cognitive passwords: An empirical assessment'. Together they form a unique fingerprint.

Cite this