Skip to Main Content
Nowadays, graphical password is being regarded as a promising alternative in network security to replace traditional text-based password in which users interact with images for authentication rather than input alphanumeric stings. In general, this image-based authentication can be classified into three categories: click-based graphical password, choice-based graphical password and draw-based graphical password. However, each of them suffers from several intrinsic limitations. In this paper, we propose and develop a click-draw based graphical password scheme (CD-GPS) with the purpose of improving the image-based authentication in both security and usability by combining the above three techniques. Specifically, our scheme mainly contains two operational steps: image selection and secret drawing. That is, users first choose an ordered sequence of images and then select some of them to click-draw their secrets. We present an initial user study which shows positive results that our scheme is good at both security and usability, and subsequently give a preliminary security analysis of our scheme against several well-known attacks (e.g., dictionary attack).