Reader Comments (rss)

(Flattened / Threaded)

1.  

   I hope they don't have a patent

   

   Oliver Wendell Jones, May 21st, 2003 @ 11:20am

   
   

   Or that it came about before that horrid movie Johnny Mnemonic, because that's what was used as a password for his cranial storage.
   Any password that involves you moving a cursor around on a screen is easily surpassable by anybody within visual range, and that includes via security camera.
   Maybe if they put the pictures in a 3x3 grid that corresponded to the 1-9 keys on the keypad, but even at that it's still easily 'readable' by anyone who cares enough to try. People can read your PIN numbers at ATM machines from 10+ feet away, so this shouldn't be any more difficult.
   This is one of those things that sounds good, looks pretty, but is fairly useless. At least in my humble opinion...

   [ reply to this | link to this | view in thread ]

2.  

   Re: I hope they don't have a patent

   

   Anonymous Coward, May 21st, 2003 @ 12:13pm

   
   

   There's an adault website out there who does this (pick your favorite 2 girls). They say it cuts down on password sharing and cracking attempts

   [ reply to this | link to this | view in thread ]

3.  

   No Subject Given

   

   Jim Tsoj, May 21st, 2003 @ 1:32pm

   
   

   I guess, the idea is that you create the sequence in your own context. So, someone else wouldn't be able to guess. For exampe, you can make up a story: "I go to store", but for you it will be totally different sequence than for others. However, you do need huge library of images + it can't be used in all cases. Also, this assumes that abuser who tries to guess your password, doesn't know you personally. I would guess, web site is good place to use them, but not as a login to your payroll system.

   [ reply to this | link to this | view in thread ]

4.  

   password incorrect:

   

   Anonymous Coward, May 21st, 2003 @ 6:54pm

   
   

   Three random pictures with waldo hidden somewhere in each one.

   [ reply to this | link to this | view in thread ]

5.  

   Password images

   

   Simon Grice, Sep 10th, 2003 @ 12:58am

   
   

   check out www.passface.com
   i 'registered' my passface (read password)
   about 18 months ago
   just tried to login and guess what i did!
   ie: i remembered my 5 passfaces easily!
   
   now no password is that easy to 'remember'
   
   read the science.
   
   

   [ reply to this | link to this | view in thread ]

6.  

   Re: I hope they don't have a patent

   

   Scott Porter, Oct 29th, 2003 @ 3:20am

   
   

   >People can read your PIN numbers at ATM machines from 10+ feet away, so this shouldn't be any more difficult. When an observer watches someone enter a pin at an ATM, they have an advantage in that they already know the alphabet used (ie digits 0-9), however, even with this, it is most frequent for the pattern to be remembered, even the users themselves tend to do this. With passfaces (www.passface.com), the position is randomised, and relied on the cognitive abitlities of the user. Also, many systems, such as passface, only show one photo at a time (with 8 others), as soon as an image is selected, the next group appears, giving the observer much less time to memorize the token (ie face). (passface also has the added advantage of eliminating dictionary attacks, combinational attacks would have to be used, which require exponentially more time, increasing the chance of being exposed)

   [ reply to this | link to this | view in thread ]

Add Your Comment