Now you see me, now you don't. Protecting smartphone authentication from shoulder surfers

Luca, A. de; Harbach, M.; Zezschwitz, E. von; Maurer, M.-E.; Slawik, B.; Hussmann, H.; Smith, M.

2014

Konferenzbeitrag

Abstract

In this paper, we present XSide, an authentication mechanism that uses the front and the back of smartphones to enter stroke-based passwords. Users can switch sides during input to minimize the risk of shoulder surfing. We performed a user study (n = 32) to explore how switching sides during authentication affects usability and security of the system. The results indicate that switching the sides increases security while authentication speed stays relatively fast (< 4 seconds). The paper furthermore provides insights on accuracy of eyes-free input (as used in XSide) and shows how 3D printed prototype cases can improve the back-of-device interaction experience.

Author(s)

Luca, A. de

Harbach, M.

Zezschwitz, E. von

Maurer, M.-E.

Slawik, B.

Hussmann, H.

Smith, M.

Hauptwerk

CHI 2014. One of a CHInd. The 32nd Annual ACM Conference on Human Factors in Computing Systems. Conference proceedings

Konferenz

Conference on Human Factors in Computing Systems (CHI) 2014

Options

Now you see me, now you don't. Protecting smartphone authentication from shoulder surfers