Defenses  against large scale online password guessing attacks
Upcoming SlideShare
Loading in...5
×
 

Defenses against large scale online password guessing attacks

on

  • 215 views

Defenses Against Large Scale Online Password Guessing Attacks By Using Persuasive Click Point

Defenses Against Large Scale Online Password Guessing Attacks By Using Persuasive Click Point

Statistics

Views

Total Views
215
Views on SlideShare
215
Embed Views
0

Actions

Likes
0
Downloads
14
Comments
0

0 Embeds 0

No embeds

Accessibility

Categories

Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

    Defenses  against large scale online password guessing attacks Defenses against large scale online password guessing attacks Presentation Transcript

    • Project Name : “Defenses Against Large Scale Online Password Guessing Attacks By Using Persuasive Click Point ” Members :  Mr. Neel Kamal.
    • Content • Purpose • Objective • Password Guessing Attacks • Existing System 1.Taxonomy of Authentication 2.Disadvantages • PCCP • PGRP • System Architecture • Use case diagram
    • Cont… • Advantages • Requirement • References • Conclusion
    • Purpose • To provide more secure authentication. • To provide user friendly environment to create password. • To provide large password space over alphanumeric passwords.
    • Objective • Force users to select more random, and difficult passwords to guess. • To provide better security and easy to remember passwords.
    • Online Password Guessing Attack • Dictionary Attacks • Brute Force Attack • Shoulder Surfing • Spy ware • Social engineering
    • Literature survey
    • Taxonomy Of Authentication
    • Graphical Password System  Recognition Based Techniques  Recall based techniques : a) Pass Points (PP) b) Cued Click Points (CCP)
    • Disadvantages of Existing System • Token based system requires support of knowledge based system • Text based passwords easily broken by brute force and dictionary attacks. • Biometrics based system is more complex and costly.
    • Persuasive Cued Click Point (PCCP) • Select a click-point within the view port. • Shuffle button to randomly reposition the view port • view port guides users to select more random passwords
    • Password Guessing Resistant Protocol (PGRP)  Restrict password guessing attacks  limits the total number of login attempts  protection against key logger, spy ware
    • System Architecture
    • Use Case Diagram
    • Advantages  Large password space over alphanumeric passwords Bullet point  More restrictive against brute force and dictionary attacks  More effective in preventing password guessing attacks
    • Requirement  Minimum Software Requirement: Apache Tomcat, Dreamweaver My SQL database Advanced JAVA and JSP  Minimum Hardware Requirements: HDD 80 GB RAM 512 MB Processor Intel P4
    • References 1. Chiasson, P.C. van Oorschot, and Robert Biddle, “Graphical Password Authentication Using Cued Click Points” ESORICS , LNCS 4734, pp.359 374,Springer- Verlag Berlin Heidelberg 2007. 2. Usable Authentication and Click-Based Graphical Password by Sonia Chiasson . 3. Persuasive Cued Click-Points: Design, implementation, and evaluation of a knowledge-based authentication mechanism Sonia Chiasson, Member, IEEE, Elizabeth Stobert, Alain Forget, Robert Biddle, Member, IEEE, and P. C. van Oorschot, Member, IEEE
    • Conclusion • There is a growing interest for Graphical passwords since they are better than Text based passwords, although the main argument for graphical passwords is that people are better at memorizing graphical passwords than text-based passwords • Persuasive Click point method provides greater security than other graphical password methods.