Dynamic analysis on pixel value graphical password scheme

For decades, authentication system relied on username and password as pass-phrase object for the authentication process. The longer, wider the variety of symbol choices,
and randomly arranged phrase considered as a strong password. A strong password is hard to memorise and makes it less preferred by most of the users in most of the cases.
Psychological study that shows human is better at recognising and remembering images. Therefore, graphical password mechanism was introduced to reduce human memory burden. There were two types of graphical password introduced for the past twelve years which are click-based and draw-based graphical password scheme. Click based graphical password scheme requires users to recognise and click in sequence during authentication. Draw-based graphical password scheme requires user to memorise pattern during authentication. However, draw-based graphical password scheme requires specific drawing input device makes it less preferable to implement that click-based graphical password scheme. Meanwhile, click-based graphical password scheme is vulnerable to shoulder surfing and click attempt because of exposed clickable pass-object on authentication interface. Based on literature analysis of click-based graphical password scheme limitations has lead to the design features and criteria for pixel value graphical password scheme. Pixel value graphical password scheme was designed to meet the identified features and criteria that overcomes clickbased graphical password scheme limitations. By removing exposed and clickable passobject features on graphical password, pass-object cannot be seen by other users and requires large attempt effort to break. Compliance analysis on graphical password scheme shows that it is fit to overcome limitations of click-based graphical password
scheme. Therefore, pixel value graphical password scheme users may use their most meaningful image as pass-object to make pass-object more memorable in secure way and less risk.