3D Password

by Apurva Kolse


Posted on October 29, 2020 at 11:00 AM


3D Password

What is 3D Password?

Generally passwords are set on the bases of human memory. Usually simple passwords like pet names, places and phone numbers are set so as to quickly recall them. But in this 3d scheme human memory has to undertake the facts of recalling, recognition, token or biometrics based authentication in one single authentication system.

A multi-factor authentication scheme. (knowledge base + token base + biometrics)

The user login by navigating through a 3D environment. The collected user actions and interactions in the 3D virtual environment construct the 3D password.

Virtual Environment

3D virtual environment is used as basic building block of this multi-factor authentication scheme. The 3D virtual environment is created with the help of a 2D screen. It is a real time scenario seen by people in their day to day life which is virtually created in 3D virtual environment.

The environment consists of many objects and items. The collected user actions and interactions in the 3D virtual environment construct the 3D password. The user interaction with the objects creates the user’s 3D Password.

Architecture

3D Password is multi-factor therefore several password schemes such as textual password, graphical password, biometrics, token or cards based passwords simultaneously can be used as a part of user 3D Password. 3D password offers a 3D virtual environment which can be defined as the transformation of real life scenarios into virtual objects. For creating 3D passwords users moves inside the 3D virtual environment and interacts with the virtual objects present in the scenarios given. The interactions with the virtual objects inside 3D virtual environment vary as per the different user.

Advantages

  • Provides high security.

  • Flexible, as it provides multifactor authentication.

  • Provides infinite number of password possibilities.

  • Easy to implement.

Security Analysis

Brute Force Attack: In this kind of attack the attacker has to try n number of possibilities of a 3D password.

Well Studied Attack: In this attack the attacker tries to find the whole password scheme. In order to launch such an attack, the attacker has to acquire knowledge of the most probable 3d password distributions and this is very difficult because the attacker has to study all the existing authentication.

Shoulder Surfing Attack: Here an attacker uses a camera to record the user’s 3 Dimensional password or the attacker tries to watch the legitimate user creates a 3d password.

Currently there are many authentication schemes available and they are based on user’s physical and behavioral properties, where as some other authentication schemes are based on user’s knowledge such as textual and graphical passwords. The textual passwords and graphical passwords or combination of both are commonly applied. But both of the authentication schemes are vulnerable to certain attacks. And, there are many such kind of authentication schemes are currently under study and they require additional time and effort to be applicable for commercial use. The 3 Dimensional password is a multifactor authentication system that combines various authentication schemes into a single one. The virtual environment in the 3 Dimensional password authentication scheme can contain any existing authentication scheme or any upcoming authentication schemes. The system administrator should design the environment to select the appropriate object which reflects the protected system requirements. However, designing a simple and easy to use 3- Dimensional virtual environment is a factor that leads to a higher user acceptability of a 3-D password system. Based on user’s preference and requirements the choice of what authentication schemes should be part of the user’s 3D password.