Frequency of Occurrence Analysis Attack and Its Countermeasure

Frequency of Occurrence Analysis Attack and Its Countermeasure

Lip Yee Por
Faculty of Computer Science and Information Technology, University of Malaya, Malaysia

 

Abstract:
This paper addresses a newly discovered security threat named Frequency of Occurrence Analysis (FOA) attack in searchmetics password authentication scheme. A countermeasure technique that utilises Metaheuristic Randomisation Algorithm (MRA) is proposed to address the FOA attack. The proposed Algorithm is presented and an offline FOA attack simulation tool is developed to verify the effectiveness of the proposed method. In addition, a shoulder surfing testing is conducted to evaluate the effectiveness of the proposed method in terms of mitigating shoulder surfing attack. The experiment results show that MRA is able to prevent FOA and mitigate shoulder surfing attacks. Moreover, the proposed method is able to provide larger password space compare to the benchmarking scheme.



Keywords: FOA, MRA, picture-based password, graphical authentication, shoulder surfing.
 
Received November 28, 2010; accepted May 24, 2011
Read 3311 times Last modified on Thursday, 07 March 2013 03:34
Share
Top
We use cookies to improve our website. By continuing to use this website, you are giving consent to cookies being used. More details…