@inproceedings{5007996c73184906a7dd6db1fd921303,
title = "POSTER: AuthZit: Multi-modal Authentication with Visual-Spatial and Text Secrets",
abstract = "Designing a fallback authentication mechanism that is both memorable and strong is a challenging problem because of the trade-off between usability and security. This challenge is particularly pronounced for accounts that require infrequent authentication, where the authentication secrets must remain secure and easy to recall without frequent reinforcement. Inspired by people{\textquoteright}s strong visual-spatial memory and memory via association, we introduce a novel system AuthZit to help address this problem. AuthZit encodes authentication secrets as paths through a 3D map of places in real life navigated in the first person and birds-eye perspective, along with a textual secret tagged with this path. We evaluated the usability and security of our design in two dimensions: memorability after one month and speed through a user study with 20 participants. Our results suggest that (1) user authentication secrets in AuthZit are memorable, and (2) authentication using AuthZit was not significantly slower to enter.",
keywords = "Fallback authentication, Human computer interaction, Usable security, Visual-spatial",
author = "Han, {Joon Kuy} and Dennis Wong and Byungkon Kang",
note = "Publisher Copyright: {\textcopyright} 2023, The Author(s), under exclusive license to Springer Nature Switzerland AG.; 21st International Conference on Applied Cryptography and Network Security, ACNS 2023 ; Conference date: 19-06-2023 Through 22-06-2023",
year = "2023",
doi = "10.1007/978-3-031-41181-6_36",
language = "English",
isbn = "9783031411809",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer Science and Business Media Deutschland GmbH",
pages = "664--668",
editor = "Jianying Zhou and Lejla Batina and Stjepan Picek and Zengpeng Li and Jingqiang Lin and Eleonora Losiouk and Suryadipta Majumdar and Daisuke Mashima and Weizhi Meng and Rahman, {Mohammad Ashiqur} and Jun Shao and Masaki Shimaoka and Ezekiel Soremekun and Chunhua Su and Teh, {Je Sen} and Aleksei Udovenko and Cong Wang and Leo Zhang and Yury Zhauniarovich",
booktitle = "Applied Cryptography and Network Security Workshops - ACNS 2023 Satellite Workshops, ADSC, AIBlock, AIHWS, AIoTS, CIMSS, Cloud S and P, SCI, SecMT, SiMLA, Proceedings",
address = "Germany",
}