This document proposes IASL, an image-based authentication system that uses CAPTCHAs (tests to distinguish humans from computers) as graphical passwords. IASL addresses security issues with traditional text passwords by requiring users to click on points in a sequence of CAPTCHA images during login. It protects against online dictionary attacks since each login requires solving a new CAPTCHA. The document discusses recognition-based and text-based IASL schemes, and explains that IASL offers protection against guessing, shoulder surfing, and relay attacks by using computationally difficult CAPTCHAs that change for each login attempt.