Captcha as Graphical Passwords—A New Security Primitive
Based on Hard AI Problems
ABSTRACT:
Many security
primitives are based on hard mathematical problems. Using hard AI problems for
security is emerging as an exciting new paradigm, but has been under-explored.
In this paper, we present a new security primitive based on hard AI problems,
namely, a novel family of graphical password systems built on top of Captcha
technology, which we call Captcha as graphical passwords (CaRP). CaRP is both a
Captcha and a graphical password scheme. CaRP addresses a number of security
problems altogether, such as online guessing attacks, relay attacks, and, if
combined with dual-view technologies, shoulder-surfing attacks. Notably, a CaRP
password can be found only probabilistically by automatic online guessing
attacks even if the password is in the search set. CaRP also offers a novel
approach to address the well-known image hotspot problem in popular graphical
password systems, such as PassPoints, that often leads to weak password
choices. CaRP is not a panacea, but it offers reasonable security and usability
and appears to fit well with some practical applications for improving online
security.
EXISTING SYSTEM:
Ø The most notable primitive invented is Captcha, which
distinguishes human users from computers by presenting a challenge, i.e., a
puzzle, beyond the capability of computers but easy for humans. Captcha is now
a standard Internet security technique to protect online email and other
services from being abused by bots.
DISADVANTAGES
OF EXISTING SYSTEM:
Ø This existing paradigm has achieved just a limited success
as compared with the cryptographic primitives based on hard math problems and
their wide applications.
PROPOSED SYSTEM:
Ø In this paper, we present a new security primitive
based on hard AI problems, namely, a novel family of graphical password systems
built on top of Captcha technology, which we call Captcha as graphical
passwords (CaRP).
Ø CaRP is both a Captcha and a graphical password
scheme. CaRP addresses a number of security problems altogether, such as online
guessing attacks, relay attacks, and, if combined with dual-view technologies,
shoulder-surfing attacks.
ADVANTAGES
OF PROPOSED SYSTEM:
Ø CaRP offers protection against online dictionary
attacks on passwords, which have been for long time a major security threat for
various online services.
Ø CaRP also offers protection against relay attacks, an
increasing threat to bypass Captchas protection.
SYSTEM
REQUIREMENTS:
HARDWARE REQUIREMENTS:
Ø
System : Pentium IV 2.4 GHz.
Ø
Hard Disk :
40 GB.
Ø
Floppy Drive : 1.44
Mb.
Ø
Monitor : 15
VGA Colour.
Ø
Mouse :
Logitech.
Ø Ram : 512 Mb.
SOFTWARE
REQUIREMENTS:
Ø Operating system : Windows
XP/7.
Ø Coding Language : ASP.net,
C#.net
Ø Tool : Visual Studio 2010
Ø Database : SQL
SERVER 2008
REFERENCE:
Bin B. Zhu, Jeff
Yan, Guanbo Bao, Maowei Yang, and Ning Xu ,“Captcha as Graphical Passwords—A
New Security Primitive Based on Hard AI Problems”, IEEE TRANSACTIONS ON
INFORMATION FORENSICS AND SECURITY, VOL. 9, NO. 6, JUNE 2014
No comments:
Post a Comment