• 中国计算机学会会刊
  • 中国科技核心期刊
  • 中文核心期刊

计算机工程与科学

• 计算机网络与信息安全 • 上一篇    下一篇

一种多笔画图形加数字的图形密码方案

顾彦波,李敬文,火金萍,席晓慧   

  1. (兰州交通大学电子与信息工程学院,甘肃 兰州 730070)
  • 收稿日期:2019-03-27 修回日期:2019-07-10 出版日期:2019-11-25 发布日期:2019-11-25
  • 基金资助:

    国家自然科学基金(11461038,61163010);兰州交通大学青年基金(2016014)

A graphical password scheme based on
multi-stroke graphics and numbers

GU Yan-bo,LI Jing-wen,HUO Jin-ping,XI Xiao-hui   

  1. (School of Electronic and Information Engineering,Lanzhou Jiaotong University,Lanzhou 730070,China)
  • Received:2019-03-27 Revised:2019-07-10 Online:2019-11-25 Published:2019-11-25

摘要:

安卓解锁模式(简称AUP)是目前在手机、pad等手持设备上应用最广泛的图形密码解锁方案。但是,在实际中能够使用到的密码只是图形密码空间中的一小部分,并且由于用户的使用习惯使得密码的分布不均匀,导致AUP的实际安全性远低于其理论上的安全性,更容易被攻击者破解。提出一种多笔画图形加数字的图形密码方案MSDGP,系统会根据用户的选择推荐相应难度级别的密码。该方案类似于AUP,根据数字及其位置的不同,很大程度上增加了图形密码空间,图形密码由系统推荐生成,避免了因用户的使用习惯而造成的分布不均问题,从而有效防止了暴力破解和字典攻击,因而具有更高的安全性。
 

关键词: 多笔画图形, 图形密码, 数字, 安全性分析, 安卓

Abstract:

Android Unlock Pattern (AUP) is currently the most widely used graphical password unlocking scheme on portable devices like mobile phones and pads. However, the available password in practice occupies only a fraction of the graphical password space, and the uneven distribution of the password caused by the user’s habitual choices makes the security of AUP far lower than that in theory and makes the password much easier to be cracked by attackers. This paper proposes a graphical password scheme based on multi-stroke graphics and numbers (MSDGP),which recommends a password of the corresponding difficulty level according to the user’s selection. This scheme is similar with AUP. Due to the difference of the numbers and their locations, the graphical password space is greatly enlarged. Besides, the scheme can solve the uneven distribution caused by the user’s habitual choices as the password is recommended by the system, which effectively avoids brute cracks and dictionary attacks and owns a higher security.
 

Key words: multi-stroke graphics, graphical password, digital, security analysis, Android