A study in authentication via electronic personal history questions

A. Nosseir, S. Terzis

Research output: Chapter in Book/Report/Conference proceedingConference contribution book

6 Citations (Scopus)

Abstract

Authentication via electronic personal history questions is a novel technique that aims to enhance questionbased authentication. This paper presents a study that is part of a wider investigation into the feasibility of the technique. The study used academic personal web site data as a source of personal history information, and studied the effect of using an image-based representation of questions about personal history events. It followed a methodology that assessed the impact on both genuine users and attackers, and provides a deeper
insight into their behaviour. From an authentication point of view, the study concluded that (a) an imagebased representation of questions is certainly beneficial; (b) a small increase in the number of distracters/options used in closed questions has a positive effect; and (c) despite the closeness of the
attackers their ability to answer correctly with high confidence questions about the genuine users’ personal history is limited. These results are encouraging for the feasibility of the technique.
Original languageEnglish
Title of host publicationProceedings of the 12th International Conference on Enterprise Information Systems
EditorsJose Cordeiro
Pages63-70
Number of pages8
Publication statusPublished - Jun 2010
Event12th International Conference on Enterprise Information Systems - Funchal, Portugal
Duration: 8 Jun 201012 Jun 2010

Conference

Conference12th International Conference on Enterprise Information Systems
Country/TerritoryPortugal
CityFunchal
Period8/06/1012/06/10

Keywords

  • electronic personal histories
  • authentication
  • security applications

Fingerprint

Dive into the research topics of 'A study in authentication via electronic personal history questions'. Together they form a unique fingerprint.

Cite this