Image or pictographic based computer login systems and methods
Image based login procedures for computer systems include: (a) displaying a first image on a computer screen; (b) receiving user input indicating a portion of the first image; (c) determining if the user input corresponds to a first acceptable user input for user authentication; and (d) proceeding with the authentication procedure when this user input corresponds to the first acceptable user input for user authentication. Additionally or optionally, when proceeding with this authentication procedure, the systems and methods further may include: displaying a second image on the screen; receiving new user input indicating a portion of the second image; and determining if this new input corresponds to a second acceptable user input for user authentication.
Latest Microsoft Patents:
More than one reissue application has been filed for the reissue of U.S. Pat. No. 7,953,983. This application is a continuation reissue of U.S. application Ser. No. 14/156,044, filed Jan. 15, 2014, which is a continuation reissue of U.S. Pat. No. RE44,725, filed Mar. 1, 2012, which is an application for reissue of U.S. Pat. No. 7,953,983 B2, issued May 31, 2011.
FIELD OF THE INVENTIONThe present invention generally relates to systems, methods, and computer-readable media for providing an image or pictographic based login procedure for computer systems or networks. While useful in non-electronic ink environments, such systems and methods may find particular usefulness in login procedures for pen-based computing systems and/or other systems that accept electronic ink input.
BACKGROUNDTypical computer systems, especially computer systems using graphical user interfaces (“GUIs”), are optimized for accepting user input from one or more discrete input devices, such as a keyboard for entering text and a pointing device, such as a mouse with one or more buttons, for operating the user interface. An example of such a GUI is the user interface for the Windows® computer operating system (available from Microsoft Corporation of Redmond, Wash.). The ubiquitous keyboard and mouse interface provides for fast creation and modification of documents, spreadsheets, database fields, drawings, photos, web pages, emails, and the like.
Recently, however, pen-based computing systems, such as tablet personal computers (“tablet PCs”), personal digital assistants (“PDAs”), and the like, have been increasing in popularity. With pen-based computing systems, user input advantageously may be introduced as “electronic ink” using an electronic “pen” or stylus (e.g., mimicking writing with a pen or pencil on a piece of paper). Indeed, in at least some pen-based computing systems, all user input is capable of being entered and manipulated using an electronic pen input device, and the user interface is fully controllable using only the electronic pen.
As pen-based computing systems become more popular, many computer activities such as access in a computer system become more difficult to implement. For example, in a computer system in which a user logs into an individualized account or inputs security information to enter a restricted site, a pen-based computer system creates difficulties for the user to conveniently and efficiently maneuver the pen or stylus to accomplish the task.
In a typical computer system, a display is presented to the user containing a field in which the user enters a userid and a field in which the user enters a corresponding password. Typically, a user inputs information via a keyboard. Therefore, if inputting data via a keyboard is problematic (e.g., a keyboard is not available or not conveniently accessible), a user may not be able to input data as necessary. In such a system lacking a conveniently available keyboard, a user would be unable to successfully access information because of the inability to enter authentication information into the system.
In the traditional method of gaining access to a private account, a user typically enters a password via a keyboard. A password that has a higher level of security (i.e., a completely random string of characters that is not otherwise associated with the user) is typically difficult to remember. Thus, the user often forgets the password and must expend effort in having the password reset, obtaining the password from a system administrator, etc. To avoid this inconvenience, the user may select a password that is easy to remember, such as the user's date of birth. However, such passwords are easy to “crack” and provide very little security to the user. This defeats the purpose of having the security system in the first place. Thus, the typical computer user is caught in a dilemma of trying to maintain a high level of security while at the same time creating a password that the user can remember. Often, this balance is difficult to achieve. Therefore, a system and method for providing security is needed that is easy to use for the user with minimal demands on the user's memory while providing a high level of security against unauthorized users.
The above-noted issues associated with data input of security information, compromise of password security information or loss of security in computing systems can lead to user frustration. Accordingly, there is a need in the art for improved input of security information, e.g., for use with pen-based computing systems and in other situations where keyboards are inconvenient or unavailable.
SUMMARYAspects of the present invention relate to systems, methods, and computer-readable media for providing image or pictographic based login procedures for computer systems or networks. Such systems and methods may include: (a) displaying a first image on a computer display screen; (b) receiving a first user input indicating a portion of the first image (e.g., via an electronic ink input system); (c) determining if the first user input corresponds to a first acceptable user input for user authentication (e.g., via a computer processor system); and (d) proceeding with a user authentication procedure when the first user input corresponds to the first acceptable user input for user authentication. Additionally or optionally, when proceeding with the user authentication procedure, systems and methods in accordance with examples of this invention may further include: displaying a second image on the computer display screen; receiving a second user input indicating a portion of the second image; and determining if the second user input corresponds to a second acceptable user input for authentication. If desired, user access to the computer system or network may be allowed when the first and/or second user inputs correspond to the acceptable user inputs for user authentication. Aspects of the invention further relate to computer-readable media including computer-executable instructions stored thereon for providing image or pictographic based authentication procedures for computer systems or networks like those described above.
The above and other objects, features, and advantages of the present invention will be more readily apparent and more fully understood from the following detailed description, taken in conjunction with the appended drawings, in which:
When the same reference number is used in more than one of the attached drawings, it is intended to refer to the same or similar parts, features, or steps in the various different drawings.
DETAILED DESCRIPTIONAs described above, aspects of the present invention relate to systems, methods, and computer-readable media for an image or pictographic login procedure. The following description is divided into sub-sections to assist the reader. The sub-sections include: Terms; General Description of Various Aspects of the Invention; Example Hardware; Example Systems, Methods, and Computer-Readable Media According to the Invention; and Conclusion.
I. Terms
The following terms are used in this specification and, unless otherwise specified or clear from the context, the terms have the meanings provided below:
“Pen”—Any type of user input device useful in entering electronic ink into and/or otherwise manipulating or controlling an electronic document, a user interface, and/or a computer operating system. The terms “pen” and “stylus” may be used interchangeably in this specification.
“Computer-Readable Medium” means any available media that can be accessed by a user on a computer system. By way of example, and not limitation, “computer-readable media” may include computer storage media and communication media. “Computer storage media” includes volatile and nonvolatile, removable and non-removable media implemented in any method or technology for storage of information, such as computer-readable instructions, data structures, program modules or other data. “Computer storage media” includes, but is not limited to, RAM, ROM, EEPROM, flash memory or other memory technology; CD-ROM, digital versatile disks (DVD) or other optical storage devices; magnetic cassettes, magnetic tape, magnetic disk storage or other magnetic storage devices; or any other medium that can be used to store the desired information and that can be accessed by a computer. “Communication media” typically embodies computer-readable instructions, data structures, program modules or other data in a modulated data signal, such as a carrier wave or other transport mechanism, and includes any information delivery media. The term “modulated data signal” means a signal that has one or more of its characteristics set or changed in such a manner as to encode information in the signal. By way of example, and not limitation, communication media includes wired media, such as a wired network or direct-wired connection, and wireless media, such as acoustic, RF, infrared and other wireless media. Combinations of any of the above should also be included within the scope of “computer-readable media.”
II. General Description of Various Aspects of the Invention
As generally described above, aspects of the present invention relate to systems, methods, and computer-readable media for providing an image or pictographic based authentication procedure for computer systems or networks. The authentication procedure of the present invention may be applied in any application where authorization of a user is desired. For example, a system may require authentication of a user before allowing the user to “log in” to the user's account. In this situation, a user desiring access to his personal account on a system may apply the authentication procedure of the present invention to gain access to the account while preventing other unauthorized users from accessing the account. Also, the authentication procedure of the present invention may be applied to accessing protected or private sites, for example, on an intranet or on the internet and/or for accessing or logging on to individual computers or systems, local area networks, wide area networks, or the like. Methods in accordance with at least some examples of this invention may include: (a) displaying a first image on a computer display screen; (b) receiving a first user input indicating a portion of the first image; (c) determining if the first user input corresponds to a first acceptable login user input; and (d) proceeding with a user login procedure when the first user input corresponds to the first acceptable login user input. Additionally or optionally, when proceeding with the user login procedure, methods in accordance with at least some examples of this invention further may include: displaying a second image on the computer display screen (the second image may be the same as the first image, an enlargement of part of the first image, a completely new image, etc.); receiving a second user input indicating a portion of the second image; and determining if the second user input corresponds to a second acceptable login user input. If desired, user access to the computer system or network may be allowed when the first and/or second user inputs correspond to the acceptable login user inputs.
Systems in accordance with at least some examples of this invention may include: (a) a computer display screen; (b) an input system for receiving user input (e.g., such as a digitizer for receiving electronic ink input); and (c) a processor system (e.g., including one or more processors) programmed and adapted to: (i) display a first image on a computer display screen, (ii) determine if a first user input indicating a portion of the first image corresponds to a first acceptable login user input, and (iii) proceed with a user login procedure when the first user input corresponds to the first acceptable login user input. In at least some examples of systems in accordance with this invention, when the system proceeds with the user login procedure, the processor system is further programmed and adapted to: (iv) display a second image on the computer display screen, and (v) determine if a second user input indicating a portion of the second image corresponds to a second acceptable login user input. If desired, the processor system may allow user access to the computer system or network when the first and/or second user inputs correspond to the acceptable login user inputs.
Systems and methods according to at least some examples of this invention may accept user input (e.g., the first and/or second user inputs described above) as electronic ink input. For example, the various portions of the image may be “indicated” during the login procedure by drawing a predetermined shape at, near, or at least partially around the portion of the first image using electronic ink. Of course, various other aspects or characteristics of the input may be controlled, varied, and/or selected as part of the login procedure without departing from the invention. For example, ink color, ink thickness, pen tip shape, or other ink characteristics may be varied; characteristics of the input shape or shapes drawn by the user may be varied; the number of times a portion of an image is encircled may be controlled or varied; directional characteristics (e.g., line direction, pen movement direction, etc.) of the input may be varied; initial image selection to initiate the login procedure may be required (e.g., from a pallet of displayed image thumbnails); intermediate image selection to continue the login procedure may be required (e.g., from a pallet of displayed image thumbnails); the location(s) and/or number of “breaks” in an encirculation or other input characteristic may be varied; the pictographic login features may be used in combination with other login procedures or features, such as password entry, image selection; etc. Various other aspects of the input required during login may be varied, controlled, and used as part of the login security features without departing from this invention.
Still additional aspects of the invention relate to computer-readable media including computer-executable instructions stored thereon for providing image or pictographic based login procedures for computer systems or networks.
III. Example Hardware
A basic input/output system 160 (“BIOS”), which contains the basic routines that help to transfer information between elements within the computer 100 (such as during start-up), is stored in the ROM 140. The computer 100 also may include a hard disk drive 170 for reading from and writing to a hard disk (not shown), a magnetic disk drive 180 for reading from or writing to a removable magnetic disk 190, and/or an optical disk drive 191 for reading from or writing to a removable optical disk 199, such as a CD ROM or other optical media. The hard disk drive 170, magnetic disk drive 180, and optical disk drive 191 are connected to the system bus 130 by a hard disk drive interface 192, a magnetic disk drive interface 193, and an optical disk drive interface 194, respectively. These drives and their associated computer-readable media provide nonvolatile storage of computer-readable instructions, data structures, program modules, and other data for the personal computer 100. It will be appreciated by those skilled in the art that other types of computer-readable media that can store data that is accessible by a computer, such as magnetic cassettes, flash memory cards, digital video disks, BERNOULLI cartridges, random access memories, read only memories, and the like, also may be used in the example operating environment.
A number of program modules can be stored on the hard disk drive 170, magnetic disk 190, optical disk 199, ROM 140, or RAM 150, including an operating system 195, one or more application programs 196, other program modules 197, and program data 198. A user can enter commands and information into the computer 100 through input devices, such as a keyboard 101 and pointing device 102 (such as a mouse). Other input devices (not shown) may include a microphone, joystick, game pad, satellite dish, scanner, or the like. These and other input devices may be connected to the processing unit 110 through a serial port interface 106 that is coupled to the system bus 130, but they also may be connected by other interfaces, such as a parallel port, game port, or a universal serial bus (USB), and the like. Further still, these devices may be coupled directly to the system bus 130 via an appropriate interface (not shown).
A monitor 107 or other type of display device also may be connected to the system bus 130 via an interface, such as a video adapter 108. In addition to the monitor 107, personal computers typically include other peripheral output devices (not shown), such as speakers and printers. In one example, a pen digitizer 165 and accompanying pen or stylus 166 are provided in order to digitally capture freehand input. Although a connection between the pen digitizer 165 and the serial port interface 106 is shown in
The computer 100 can operate in a networked environment using logical connections to one or more remote computers, such as a remote computer 109. The remote computer 109 can be a server, a router, a network PC, a peer device or other common network node, and it typically may include many or all of the elements described above relative to the computer 100, although for simplicity, only a memory storage device 111 has been illustrated in
When used in a LAN networking environment, the computer 100 may be connected to the local area network 112 through a network interface or adapter 114. When used in a WAN networking environment, the personal computer 100 typically includes a modem 115 or other means for establishing a communications link over the wide area network 113, such as the Internet. The modem 115, which may be internal or external to the computer 100, may be connected to the system bus 130 via the serial port interface 106. In a networked environment, program modules depicted relative to the personal computer 100, or portions thereof, may be stored in a remote memory storage device.
It will be appreciated that the network connections shown are examples and other techniques for establishing a communications link between the computers can be used. The existence of any of various well-known protocols such as TCP/IP, Ethernet, FTP, HTTP, UDP, and the like is presumed, and the system can be operated in a client-server configuration to permit a user to retrieve web pages from a web-based server. Any of various conventional web browsers can be used to display and manipulate data on web pages.
Although the
The stylus 204 may be equipped with buttons or other features to augment its capabilities. In one example, a stylus 204 could be implemented as a “pencil” or “pen,” in which one end constitutes a writing portion and the other end constitutes an “eraser” end 205, and which, when moved across the display, indicates portions of electronic ink on the display that are to be erased. Other types of input devices, such as a mouse, trackball, keyboard, or the like also may be used. Additionally, a user's own finger could be used as an input device, e.g., for selecting or indicating portions of the displayed image on a touch-sensitive or proximity-sensitive display. Consequently, the term “user input device,” as used herein, is intended to have a broad definition and encompasses many variations on well-known input devices.
Recently, pen-based computing systems that accept user input via an electronic pen and/or display at least some forms of input as “electronic ink,” e.g., of the type described above, have increased in popularity. Use of electronic ink input as opposed to conventional pen and paper is advantageous in many respects. For example, electronic ink input may be electronically stored, filed, and cataloged for future use, which enables it to be easily maintained, located, and shared with others. Additionally, because electronic ink input can be recognized and converted to conventional machine-generated text (e.g., text insertable into, readable by, and useful by conventional computers), it can be electronically stored, searched, and otherwise used on the computer, for example, in conventional word processing documents and programs, in spreadsheets, in email programs, in document management programs, in web browsers, and the like. Handwriting recognition systems are commercially available that allow handwritten electronic ink input to be converted to machine-generated text. One example of a handwriting recognizer is that provided with the Windows XP Tablet PC Edition™ operating system (available from Microsoft Corporation of Redmond, Wash.), although other handwriting recognizers also are known and may be used in computer systems in accordance with this invention.
In various examples, pen-based computer operating systems provide an ink platform through direct modification of GINA.dll or as a set of component object model (“COM”) services that an operating system and/or an application program can use to capture, manipulate, recognize, and store ink and/or other pen actions or events. The ink platform also may include a mark-up language including a language like the extensible markup language (“XML”). Additional examples of the ink platform may use the distributed component object model (“DCOM”) implementation. Yet further implementations may be used including the Win32 programming model and the .Net programming model from Microsoft Corporation. Such platforms are commercially available and known in the art. Electronic ink data may be stored in an ink serialized format (“ISF”) or in any other suitable or desired manner, including in conventional manners known to those skilled in the art.
In addition to use with full performance pen-based computing systems or “tablet PCs” (e.g., convertible laptops or “slate” type tablet PCs), aspects of this invention may be used in conjunction with other types of pen-based computing systems and/or other devices that accept data as electronic ink and/or that accept, process, or display electronic pen or stylus input, such as: hand-held or palm-top computing systems; personal digital assistants; pocket personal computers; mobile and cellular telephones, pagers, and other communication devices; watches; appliances; and any other devices or systems that include monitors or other display devices and/or digitizers that present printed or graphical information to users and/or allow input using an electronic pen or stylus or that can process electronic ink collected by another device (e.g., a conventional desktop computer that can process electronic ink collected by a tablet PC).
Features of the invention now will be described in conjunction with the remaining figures, which illustrate various examples of the invention and/or contain information to help explain the invention. The specific figures and information contained in this detailed description should be construed as providing examples of the invention and not as limiting the invention.
IV. Example Systems, Methods, and Computer-Readable Media According to the Invention
A. Examples of Environments and/or Input Situations that May Benefit from Implementation of Systems and Methods According to the Invention
As described above, aspects of the present invention relate generally to systems and methods that may utilize an image in user authorization or authentication (e.g., secure website logins, computer system or network logins, and/or other security situations). A user may select a preferred image, for example from a menu of possible image choices or a personal image provided by the user, which is presented to the user on a display. The selected image, when displayed to the user, may be used in any authorization or authentication procedure in which the identity of the user needs to be ascertained. For example, when a user logs onto a computer system, it is typically desired that security of the system be maintained so that user data is not compromised by other users. Thus, methods and systems are desired that safeguard individual user accounts for the respective user.
The image selected conforms to predetermined characteristics and specifications to be optimized for use as a user authentication tool. The predetermined characteristics and specification of the selected image may be selected, for example, on the needs of the user in any given system or network and may include, but is not limited to, image complexity, size or resolution. For example, the image may contain a medium to high level of complexity such that a user may easily select a predetermined area in the image when a portion of the image is selected by the user for authentication. Also, increased complexity of the image increases accuracy of selection of the predetermined portion of the image, allowing the user to accurately pinpoint the portion of the image corresponding to the login selection. A complex image also is advantageous from a security standpoint in that it prevents or inhibits unauthorized users from easily guessing the portion of the image to be indicated for successful login or authentication.
Another potential method of enhancing security is to require preselected input characteristics relating to additional features of the image selection before authentication may be granted. For example, the direction of drawing the selection may be pre-selected such that the user may have to draw the image selection in a particular order or direction. In this example, the direction of selecting the proper portion of the image may be optionally limited to drawing the selection in a clockwise direction or in a counter-clockwise direction. As another example, the system may require user input of the selection to start at a particular spot on the circle (e.g., the 8 o'clock position) in order to successfully authenticate. In these ways, the user may be required to draw the selection in a predetermined manner or authentication may not occur. Also, the color of the electronic ink used for the selection may be optionally regulated in order to provide enhanced security. For example, the user may be required to draw the selection of the image with a particular color of ink, e.g., red, selected from a color pallet included with the authentication image. If this option is included in the authentication procedure, a user selecting the proper portion of the image may still fail to gain access or authorization if the user draws the selection with an improperly selected color. In this way, security is further increased such that an unauthorized person would have great difficulty in accessing the private account, data, or other information of another user.
To provide a high level of integrity of selection of the proper portion or area of the login image, the selection of the portion of the image by the user may not be the precise preselected area identified by the user during the security system set-up procedure. Due to variability and inaccuracies of the input by a human user, an authorized user may fail to draw a selection around the precise desired area in the image. Rather, due to human error or slight variations in selecting the proper portion of the image, the selection may be slightly skewed from the precise location of the portion of the image. The tolerance of the skew may depend on the individual system or network and may be calculated or adjusted based on the needs of the user, for example. Thus, the login and authentication method and system of the present invention provide for a tolerance in the selection of the portion of the image for user authorization. In this example, if the selection of the portion of the image for authorization is not precisely correct but is still within an allowable range from the originally designated selection area, the authorization process will proceed. Only if the selection is outside a predetermined tolerance level from the predetermined area will the system not permit the user to log in (or at least to continue into the login procedure). This tolerance may depend on many factors such as the complexity of the image, the resolution of the image used for authentication, or the input means, to name a few. Optionally, if desired, systems and methods according to at least some examples of this invention may allow a user and/or a system administrator to select the tolerance level to maximize security while permitting authentication within an acceptable range of the pre-selected input.
After the user properly selects the predetermined portion of the image for authentication as indicated in
As
In
If there are further images from which to select a portion from, the process repeats as described until the final image is properly processed and the proper portion of the final image is selected. If all of the selections were proper, the login and authentication process is complete and the user logs into the system under his Userid in his account. If any one selection was erroneous, login/authentication fails. A message may optionally be displayed to the user indicating that authorization has failed.
Also, for added security, traditional methods of authentication may be combined with the authentication methods of the present invention. For example, a traditional display in which a user is requested to input a userid and/or a password may be combined with the authentication method of the present invention to enhance security. In a traditional system in which only a userid and password is used, an unauthorized user may access the account if he/she is able to obtain the authorized user's password. By logging into the account improperly, the unauthorized user compromises security. However, in this example of the present invention in which authorization by image selection is combined by the traditional method(s) of authentication, multiple forms of security used in conjunction can further prevent an unauthorized user from improperly gaining access to another user's account information.
In another example of another aspect of the present invention, information may be hidden within the image displayed. There are many known method of hiding information within an image which may be incorporated in the present invention. For example, steganography may be used in which information is hidden in the image such that only the user knows of the existence of the information. For example, key information of, but not limited to, the form (login name plus the key data) and hashed in one selection may be hidden steganographically into an image. As the user selects the proper portion of each consecutive image, the hidden information, such as the key code or login name, is selected. If a match occurs at the completion of the authorization process between the stored information (e.g., key or login name) and the steganographically hidden information selected by the user, login is successful.
As referred to above, there are many potential features that may be included and/or varied in the authentication of the present invention. Some of these variations include:
Ink color (or other characteristics, such as thickness); shape(s) drawn; number of “encirculations;” directional characteristics (e.g., line direction, pen movement direction, etc.); position with respect to image (which may move from login to login); absolute position on the digitizer irrespective of image position; initial image selection by user; intermediate image selection by user; location(s) or number of “breaks” in an encirculation; use encirculation login in combination with other login procedures, such as password entry, image selection, etc.;
Finally, the present invention also relates to computer-readable media including computer-executable instructions stored thereon for performing various methods and operating various systems, including the systems and/or methods described above. The computer-readable media may constitute computer-executable instructions stored on the various specific examples of computer-readable media described above.
V. Conclusion
Various examples of the present invention have been described above, and it will be understood by those of ordinary skill that the present invention includes within its scope all combinations and subcombinations of these examples. Additionally, those skilled in the art will recognize that the above examples simply exemplify various aspects of the invention. The various specific steps and/or architectural elements described above can be changed, functions may be added, deleted, combined, and/or changed in order without departing from the invention. Thus, various changes and modifications may be made without departing from the spirit and scope of the invention, as defined in the appended claims.
Claims
1. A user authentication method, comprising acts of:
- displaying a first image on a display screen;
- receiving a first user input comprising a first shape that is drawn around a portion of the displayed first image;
- performing a first authentication step comprising verifying that the portion of the displayed first image around which the first shape is drawn, matches a designated portion of the first image that is predetermined for user authentication;
- displaying a second image on the display screen, wherein displaying of the second image provides no indication of a result of the first authentication step;
- receiving a second user input comprising a second shape that is drawn around a portion of the displayed second image;
- performing a second authentication step comprising verifying that the portion of the displayed second image around which the second shape is drawn, matches a designated portion of the second image that is predetermined for user authentication; and
- determining that a user is successfully authenticated upon successful completion of the first and second authentication steps;
- wherein at least one of the first or second authentication steps further comprising: verifying that the respective first or second shape matches a predetermined shape, and verifying that a direction in which the respective first or second shape is drawn matches a predetermined direction.
2. The method according to claim 1, further comprising an act of:
- allowing the user to access a computer system when the user is determined to be successfully authenticated.
3. The method according to claim 1, wherein the second image is an enlargement of a part of the first image.
4. The method according to claim 1, wherein at least one of the first or the second user inputs include electronic ink input.
5. The method according to claim 1, wherein at least one of the first or second authentication steps further comprising verifying that a color used to draw the respective first or second shape matches a predetermined color.
6. The method according to claim 1, wherein at least one of the first or second authentication steps further comprising verifying that the respective first or second shape is drawn by starting at a predetermined spot of the predetermined shape.
7. A computer-readable storage medium including computer-executable instructions stored thereon for performing steps of:
- displaying a first image on a display screen;
- receiving a first user input comprising a first shape that is drawn around a portion of the displayed first image;
- performing a first authentication step comprising verifying that the portion of the displayed first image around which the first shape is drawn, matches a designated portion of the first image that is predetermined for user authentication;
- displaying a second image on the display screen, wherein displaying of the second image provides no indication of a result of the first authentication step;
- receiving a second user input comprising a second shape that is drawn around a portion of the displayed second image;
- performing a second authentication step comprising verifying that the portion of the displayed second image around which the second shape is drawn, matches a designated portion of the second image that is predetermined for user authentication; and
- determining that a user is successfully authenticated upon successful completion of the first and second authentication steps;
- wherein at least one of the first or second authentication steps further comprising: verifying that the respective first or second shape matches a predetermined shape, and verifying that the direction in which the respective first or second shape is drawn matches a predetermined direction.
8. A system, comprising:
- a display screen;
- an input system for receiving user input; and
- a processor system programmed to: display a first image on the display screen in response to a first user's initiation of a procedure requiring authentication of the first user as an authorized user, wherein the first image comprises a designated portion of the first image that was previously selected by the authorized user as a portion of the first image that must be properly selected when the first image is displayed to the first user for user authentication; receive a first user input via the input system, wherein the first user input indicates a user-selected portion of the displayed first image,
- wherein the first user input comprises a shape that is drawn at least partially around the user-selected portion of the displayed first image; and determine that the first user input constitutes a proper selection of the designated portion of the first image for user authentication, when the first user input satisfies pre-specified conditions for proper selection of the designated portion of the first image; wherein the pre-specified conditions include: a first condition that the user-selected portion of the displayed first image corresponds to the designated portion of the first image at least within a permitted level of variation between the user-selected portion of the displayed first image and the designated portion of the first image, a second condition that the shape that is drawn at least partially around the user-selected portion of the displayed first image matches a predetermined shape, and a third condition that the shape that is drawn at least partially around the user-selected portion of the displayed first image is drawn by starting at a predetermined spot of the predetermined shape.
9. The system according to claim 8, wherein the processor system is further programmed to:
- display a second image on the display screen, wherein displaying the second image provides no indication of an improper selection of the designated portion of the first image, and further wherein the second image comprises a designated portion of the second image that was previously selected by the authorized user as a portion of the second image that must be properly selected when the second image is displayed to the first user for user authentication, and
- receive a second user input via the input system, wherein the second user input indicates a user-selected portion of the displayed second image, and determine if the second user input constitutes a proper selection of the designated portion of the second image for user authentication.
10. The system according to claim 9, wherein when the second user input is determined to be a proper selection of the designated portion of the second image for user authentication, the processor system is further programmed to allow the first user to access a computer system.
11. The system according to claim 9, wherein the second image is an enlargement of a part of the first image.
12. The system according to claim 9, wherein the second user input includes electronic ink input comprising a shape that is drawn at least partially around the user-selected portion of the displayed second image.
13. The system according to claim 12, wherein the shape that is drawn at least partially around the user-selected portion of the displayed second image comprises a predetermined shape that is drawn as a condition for proper selection of the designated portion of the second image.
14. The system according to claim 8, wherein the processor system is further programmed to allow the first user to access a computer system.
15. A system comprising:
- a display screen;
- a processor communicatively connected with the display screen; and
- a memory coupled with the processor, the memory storing executable instructions that when executed by the processor cause the processor to effectuate operations comprising: providing instructions to display an image on the display screen in response to an initiation of an authentication procedure, wherein the image comprises predesignated portions of the image that were previously selected as portions of the image to be selected when the image is displayed for authentication; receiving a first input via an input system, wherein the first input indicates a first selected portion of the displayed image, wherein the first input comprises a first shape; receiving a second input via the input system, wherein the second input indicates a second selected portion of the displayed image, wherein the second input comprises a second shape; and determining that the first input and the second input are part of proper selection of the predesignated portions of the image for authentication when the first input and the second input satisfy pre-specified conditions for proper selection of the predesignated portions of the image, wherein the pre-specified conditions comprise: a condition that each of the first input and the second input match a predetermined shape within a permitted level of variation, wherein the permitted level of variation is based on the complexity of the image and wherein the predetermined shape comprises at least one of: a straight line, a curved line, or a closed shape; a condition that a first direction that the first shape is drawn in the first input matches a first predetermined direction from a first predetermined starting spot; and a condition that a second direction that the second shape is drawn in the second input matches a second predetermined direction; and
- authenticating the first input and the second input based in part on the permitted level of variation.
16. The system of claim 15, wherein the permitted level of variation is further based on the resolution of the image.
17. The system of claim 15, wherein the permitted level of variation is further based on a type of the input.
18. The system of claim 15, wherein the image is a user provided image.
19. The system of claim 15, wherein the input system comprises a touch input system.
20. The system of claim 15, the operations further comprise authenticating the first and second inputs based on the first and second inputs meeting the pre-specified conditions.
21. A device comprising:
- a processor; and
- a memory coupled with the processor, the memory storing executable instructions that, based on execution by the processor, configure the processor to effectuate operations comprising: displaying an image on a display screen in response to an initiation of an authentication procedure, wherein the image comprises a predesignated portion of the image that was previously selected as a portion of the image to be selected when the image is displayed for authentication; receiving a first input via an input system, wherein the first input indicates a selected portion of the displayed image, wherein the first input comprises a shape that is drawn at least partially around the selected portion of the displayed image; and determining that the first input constitutes a proper selection of the predesignated portion of the image for authentication when the first input satisfies pre-specified conditions for proper selection of the predesignated portion of the image, wherein the pre-specified conditions comprises: a condition that the first input matches a predetermined shape within a permitted level of variation, wherein the permitted level of variation is based on the complexity of the image; and a condition that a first direction that the shape is drawn in the first input matches a first predetermined direction from a first predetermined starting spot; and
- authenticating the first input based in part on the permitted level of variation.
22. The device of claim 21, wherein the shape is substantially circular.
23. The device of claim 21, wherein the image is a user provided image.
24. The device of claim 21, wherein the input system comprises a touch input system.
25. The device of claim 21, the processor further configured to: require that a predetermined number of shapes is received via the input system for authentication.
26. The device of claim 21 where the pre-specified conditions further comprise a condition that the first input matches a predetermined shape comprising at least one of a curved line or a closed shape.
27. The device of claim 21, wherein the permitted level of variation is further based on the resolution of the image.
28. The device of claim 21, wherein the permitted level of variation is further based on a type of the input.
29. A method comprising:
- displaying an image on a display screen in response to an initiation of an authentication procedure, wherein the image comprises a predesignated portion of the image that was previously selected as a portion of the image to be selected when the image is displayed for authentication;
- receiving a first input via an input system, wherein the first input indicates a selected portion of the displayed image, wherein the first input comprises a shape that is drawn at least partially around the selected portion of the displayed image; and
- determining that the first input constitutes a proper selection of the predesignated portion of the image for authentication when the first input satisfies pre-specified conditions for proper selection of the predesignated portion of the image, wherein the pre-specified conditions comprises: a condition that the first input matches a predetermined shape within a permitted level of variation, wherein the permitted level of variation is based on the complexity of the image; and a condition that a first direction that the shape is drawn in the first input matches a first predetermined direction from a first predetermined starting spot; and authenticating the first input based in part on the permitted level of variation.
30. The method of claim 29, wherein the shape is substantially circular.
31. The method of claim 29, wherein the image is a user provided image.
32. The method of claim 29, wherein the input system comprises a touch input system.
33. The method of claim 29, wherein the permitted level of variation is further based on the resolution of the image.
34. The method of claim 29, the permitted level of variation is further based on input means.
5224179 | June 29, 1993 | Denker et al. |
5465084 | November 7, 1995 | Cottrell |
5485531 | January 16, 1996 | Ichinohe et al. |
5539840 | July 23, 1996 | Krtolica et al. |
5559961 | September 24, 1996 | Blonder |
5599610 | February 4, 1997 | Levy |
5608387 | March 4, 1997 | Davies |
5778069 | July 7, 1998 | Thomlinson et al. |
6075905 | June 13, 2000 | Herma et al. |
6118872 | September 12, 2000 | Kashima et al. |
6185316 | February 6, 2001 | Buffam |
6209104 | March 27, 2001 | Jalili |
6278453 | August 21, 2001 | Bodnar |
6393305 | May 21, 2002 | Ulvinen et al. |
6516092 | February 4, 2003 | Bachelder et al. |
6720860 | April 13, 2004 | Narayanaswami |
6788304 | September 7, 2004 | Hart et al. |
6868190 | March 15, 2005 | Morton |
6934860 | August 23, 2005 | Goldstein |
6948068 | September 20, 2005 | Lawandy et al. |
6958759 | October 25, 2005 | Safadi et al. |
6959394 | October 25, 2005 | Brickell et al. |
7219368 | May 15, 2007 | Juels et al. |
7240367 | July 3, 2007 | Park |
7243239 | July 10, 2007 | Kirovski et al. |
7257241 | August 14, 2007 | Lo |
7279646 | October 9, 2007 | Xu |
7383570 | June 3, 2008 | Pinkas et al. |
7536556 | May 19, 2009 | Fedorova et al. |
7593000 | September 22, 2009 | Chin |
7657849 | February 2, 2010 | Chaudhri et al. |
7734930 | June 8, 2010 | Kirovski et al. |
7743256 | June 22, 2010 | Yang |
7793108 | September 7, 2010 | Narayanaswami et al. |
7831294 | November 9, 2010 | Viswanathan |
7873382 | January 18, 2011 | Rydgren et al. |
7941834 | May 10, 2011 | Beck et al. |
7953983 | May 31, 2011 | Holt et al. |
7970240 | June 28, 2011 | Chao et al. |
8024775 | September 20, 2011 | Xu et al. |
8286102 | October 9, 2012 | Wilensky |
8458485 | June 4, 2013 | Bandyopadhyay et al. |
8504842 | August 6, 2013 | Meacham |
RE44725 | January 21, 2014 | Holt et al. |
8650636 | February 11, 2014 | Johnson et al. |
8910253 | December 9, 2014 | Johnson et al. |
20010037468 | November 1, 2001 | Gaddis |
20010044906 | November 22, 2001 | Kanevsky et al. |
20020029341 | March 7, 2002 | Juels et al. |
20020141643 | October 3, 2002 | Jaeger |
20030054800 | March 20, 2003 | Miyashita |
20030093699 | May 15, 2003 | Banning et al. |
20030128396 | July 10, 2003 | Fan |
20030179913 | September 25, 2003 | Murase et al. |
20040010722 | January 15, 2004 | Ha |
20040034801 | February 19, 2004 | Jaeger |
20040085351 | May 6, 2004 | Tokkonen |
20040155991 | August 12, 2004 | Lowles et al. |
20040169638 | September 2, 2004 | Kaplan |
20040193882 | September 30, 2004 | Singerle, Jr. |
20040230843 | November 18, 2004 | Jansen |
20040260955 | December 23, 2004 | Mantyla |
20050141747 | June 30, 2005 | Shi et al. |
20050210417 | September 22, 2005 | Marvit et al. |
20050210418 | September 22, 2005 | Marvit et al. |
20060010400 | January 12, 2006 | Dehlin et al. |
20060020617 | January 26, 2006 | Grimminger et al. |
20060174339 | August 3, 2006 | Tao |
20060206918 | September 14, 2006 | Mclean |
20070016958 | January 18, 2007 | Bodepudi et al. |
20070047772 | March 1, 2007 | Matey et al. |
20070071285 | March 29, 2007 | Kontsevich |
20070115091 | May 24, 2007 | Bandaru |
20070150842 | June 28, 2007 | Chaudhri et al. |
20070277224 | November 29, 2007 | Osborn et al. |
20080230598 | September 25, 2008 | Bodin |
20080244013 | October 2, 2008 | Kropivny |
20080244700 | October 2, 2008 | Osborn et al. |
20080263361 | October 23, 2008 | Dutta et al. |
20090038006 | February 5, 2009 | Traenkenschuh et al. |
20090055910 | February 26, 2009 | Lee |
20090083847 | March 26, 2009 | Fadell et al. |
20090085936 | April 2, 2009 | Chen et al. |
20090094247 | April 9, 2009 | Fredlund et al. |
20090138725 | May 28, 2009 | Madhvanath et al. |
20090172810 | July 2, 2009 | Won et al. |
20090199295 | August 6, 2009 | Shih et al. |
20090210939 | August 20, 2009 | Xu et al. |
20090244013 | October 1, 2009 | Eldershaw |
20090259855 | October 15, 2009 | de cesare et al. |
20090313693 | December 17, 2009 | Rogers |
20100013762 | January 21, 2010 | Zontrop et al. |
20100031200 | February 4, 2010 | Chen |
20100043062 | February 18, 2010 | Alexander et al. |
20100128002 | May 27, 2010 | Stacy et al. |
20100131294 | May 27, 2010 | Venon et al. |
20100156843 | June 24, 2010 | Paleczny et al. |
20100180336 | July 15, 2010 | Jones et al. |
20100186074 | July 22, 2010 | Stavrou et al. |
20100211551 | August 19, 2010 | Ryu |
20100223276 | September 2, 2010 | Al-shameri et al. |
20100250937 | September 30, 2010 | Blomquist et al. |
20100322485 | December 23, 2010 | Riddiford |
20100325721 | December 23, 2010 | Bandyopadhyay et al. |
20100328201 | December 30, 2010 | Marvit et al. |
20110016405 | January 20, 2011 | Grob et al. |
20110031139 | February 10, 2011 | Macor |
20110055507 | March 3, 2011 | Cai |
20110156867 | June 30, 2011 | Carrizo et al. |
20110197259 | August 11, 2011 | Thibadeau et al. |
20110247067 | October 6, 2011 | Hirose |
20120123920 | May 17, 2012 | Fraser et al. |
20120126940 | May 24, 2012 | Coggill |
20120166944 | June 28, 2012 | Cotterill |
20120304284 | November 29, 2012 | Johnson et al. |
20130047252 | February 21, 2013 | Johnson et al. |
20130163201 | June 27, 2013 | Wang et al. |
20130247171 | September 19, 2013 | Bandyopadhyay et al. |
2011202415 | April 2012 | AU |
1957355 | May 2007 | CN |
101296457 | October 2008 | CN |
101371258 | February 2009 | CN |
201569981 | September 2010 | CN |
102067150 | May 2011 | CN |
201821481 | May 2011 | CN |
10024179 | May 2000 | DE |
10024179 | November 2001 | DE |
2150915 | October 2010 | EP |
2466513 | June 2012 | EP |
2466518 | June 2012 | EP |
2715597 | April 2014 | EP |
2003091509 | March 2003 | JP |
2003271965 | September 2003 | JP |
2007094613 | April 2007 | JP |
2008217716 | September 2008 | JP |
2010097340 | April 2010 | JP |
2010211433 | September 2010 | JP |
100856919 | June 2008 | KR |
1020110044131 | April 2011 | KR |
200701140 | January 2007 | TW |
201026004 | July 2010 | TW |
177792 | October 2001 | WO |
03048909 | June 2003 | WO |
2009022242 | February 2009 | WO |
2010005662 | January 2010 | WO |
2011049292 | April 2011 | WO |
2011100017 | August 2011 | WO |
2012161727 | November 2012 | WO |
- “Drawing Passwords”, Published in IBM Technical Disclosure Bulletin, International Business Machines Corporation, vol. 40, Issue 5, May 1, 1997, 4 Pages.
- “Final Office Action Issued in U.S. Appl. No. 11/073,742”, dated Mar. 25, 2010, 14 Pages.
- “Final Office Action Issued in U.S. Appl. No. 11/073,742”, dated May 12, 2009, 17 Pages.
- “Non Final Office Action Issued in U.S. Appl. No. 11/073,742”, dated Oct. 14, 2009, 15 Pages.
- “Non Final Office Action Issued in U.S. Appl. No. 11/073,742”, dated Aug. 25, 2010, 15 Pages.
- “Non Final Office Action Issued in U.S. Appl. No. 11/073,742”, dated Oct. 16, 2008, 16 Pages.
- “Notice of Allowance Issued in U.S. Appl. No. 11/073,742”, dated Feb. 22, 2011, 12 Pages.
- “Final Office Action Issued in U.S. Appl. No. 13/409,877”, dated Jan. 23, 2013, 7 Pages.
- “Non Final Office Action Issued in U.S. Appl. No. 13/409,877”, dated Aug. 1, 2012, 6 Pages.
- “Notice of Allowance Issued in U.S. Appl. No. 13/409,877”, dated Aug. 30, 2013, 8 Pages.
- “Final Office Action Issued in U.S. Appl. No. 14/156,044”, dated Apr. 3, 2015, 20 Pages.
- “Final Office Action Issued in U.S. Appl. No. 14/156,044”, dated Mar. 17, 2016, 19 Pages.
- “Non Final Office Action Issued in U.S. Appl. No. 14/156,044”, dated Sep. 30, 2015, 21 Pages.
- “Non Final Office Action Issued in U.S. Appl. No. 14/156,044”, dated Nov. 18, 2014, 25 Pages.
- “Notice of Allowance Issued in U.S. Appl. No. 14/156,044”, dated Oct. 7, 2016, 9 Pages.
- Jermyn, et al., “The Design and Analysis of Graphical Passwords”, In Proceedings of the 8th USENIX Security Symposium, Aug. 26, 1999, 15 Pages.
- Khandelwal, et al., “User Authentication by Secured Graphical Password Implementation”, In Proceedings of International Journal of Computer Applications, vol. 1, Issue 25, Nov. 25, 2010, pp. 100-104.
- Sobrado, Leonardo, et al., “Graphical Passwords”, Published in An electronic Bulletin of Undergraduate Research, vol. 4, 2002, 8 Pages.
- Du, et al., “A Scalable Integrated Region-Based Image Retrieval System”, In Proceedings of the International Conference on Image Processing, Oct. 7, 2001, 4 Pages.
- Feldmeier, et al., “UNIX Password Security Ten Years Later”, In Proceedings of Conference on the Theory and Application of Cryptology, Aug. 20, 1989, 20 Pages.
- Hoff, et al., “Fast Computation of Generalized Voronoi Diagrams Using Graphics Hardware”, In Proceedings of the 26th Annual Conference on Computer Graphics and Interactive Techniques, Jul. 1, 1999, 10 Pages.
- Jansen, Wayne, “Authenticating Mobile Device Users Through Image Selection”, In Proceedings of WIT Transactions on Information and Communication Technologies, vol. 30, Apr. 7, 2004, 10 Pages.
- Jansen, et al., “Picture Password: A Visual Login Technique for Mobile Devices”, In NIST Interagency/Internal Report (NISTIR)-7030, Jul. 1, 2003, 20 Pages.
- Juels, Ari, “At the Juncture of Cryptography and Humanity”, In Proceedings of First Workshop on Human Interactive Proofs, Jan. 2002, 4 Pages.
- Kara, et al., “Hierarchical Parsing and Recognition of Hand-Sketched Diagrams”, In Proceedings of the 17th Annual ACM Symposium on User Interface Software and Technology, Oct. 24, 2004, 10 Pages.
- Klein, Daniel V., “Foiling the Cracker A Survey of and Improvements to, Password Security”, In Proceedings of the 2nd USENIX Security Workshop, Aug. 14, 1990, 11 Pages.
- Lipton, David L., “Logical Authentication Methods”, Published in Newsletter ACM SIGSAC Review, vol. 4, Issue 2, Jan. 1986, pp. 9-20.
- Morris, et al., “Password Security A Case History”, Published in Magazine of Communications of the ACM, vol. 22, Issue 11, Nov. 1, 1979, pp. 594-597.
- “Office Action Issued In Mexican Patent Application No. MX/a/2013/013742”, dated Jun. 10, 2016, 7 Pages.
- Nali, et al., “Analyzing User Choice in Graphical Passwords”, Published in Technical Report, School of Information Technology and Engineering, University of Ottawa, May 27, 2004, 6 Pages.
- Naveen, et al., “Password Management Using Doodles”, In Proceedings of the 9th International Conference on Multimodal Interfaces, Nov. 12, 2007, 5 Pages.
- Oka, Ryuichi, “A New Cellular Automaton Structure for Macroscopic Linear-Curved Features Extraction”, In Proceedings of the 4th International Joint Conference on Pattern Recognition, Nov. 7, 1978, pp. 654-656.
- Oka, et al., “Scribble-a-Secret: Similarity-Based Password Authentication Using Sketches”, In Proceedings of 19th International Conference on Pattern Recognition, Dec. 8, 2008, 4 Pages.
- Paulson, Linda Dailey., “Taking a Graphical Approach to the Password”, In Journal of IEEE Computer, vol. 35, Issue 7, Jul. 2002, 1 Page.
- “International Search Report Issued in PCT Application No. PCT/US2009/032771”, dated Aug. 27, 2009, 6 Pages.
- “International Search Report and Written Opinion Issued in PCT Patent Application No. PCT/US2010/58825”, dated Feb. 2, 2011, 1 page.
- “International Search Report and Written Opinion Issued in PCT Application No. PCT/US2011/055507”, dated Apr. 10, 2012, 9 Pages.
- Perlin, Ken, “An Image Synthesizer”, In Proceedings of the 12th Annual Conference on Computer Graphics and Interactive Techniques vol. 19, No. 3, Jul. 22, 1985, 11 Pages.
- Perra, et al., “A Framework for Image Based Authentication”, In Proceedings of the IEEE International Conference on Acoustics, Speech and Signal Processing, vol. 2, Mar. 18, 2005, pp. 521-524.
- Perrig, et al., “Hash Visualization a New Technique to Improve Real World Security”, In Proceedings of International Workshop on Cryptographic Techniques and E-Commerce, 1999, 8 Pages.
- “Office Action Issued In Malaysian Patent Application No. PI2013702224”, dated Jun. 30, 2017, 3 Pages.
- Sun, et al., “An Interactive and Secure User Authentication Scheme for Mobile Devices”, In Proceedings of IEEE International Symposium on Circuits and Systems, May 18, 2008, pp. 2973-2976.
- Suo, et al., “Graphical Passwords: A Survey”, In Proceedings of 21st Annual Computer Security Applications Conference, Dec. 5, 2005, 10 pages.
- Takada, et al., “Awase-E: Image-based Authentication For Mobile Phones Using User's Favorite Images”, In Proceedings of International Conference on Mobile Human-Computer Interaction, Sep. 8, 2003, 5 Pages.
- Varenhorst, et al., “Passdoodles: a Lightweight Authentication Method”, Retrieved From: http://people.csail.mit.edu/emax/public_html/papers/sow-2004/varenhorst.pdf, Jul. 27, 2004, 14 Pages.
- Venkatesan, et al., “Robust Image Hashing”, In Proceedings of IEEE International Conference on Image Processing, vol. 3, Jan. 2000, 3 Pages.
- “Office Action Issued In Indonesian Patent Application No. W00201305431”, dated Nov. 29, 2017, 5 Pages.
- Wang, et al., “SIMPLicity: Semantics-Sensitive Integrated Matching for Picture Libraries”, In Proceedings of IEEE Transactions on Pattern Analysis and Machine Intelligence, vol. 23, Issue 9, Sep. 2001, 17 Pages.
- Weiss, et al., “PassShapes—Utilizing Stroke Based Authentication to Increase Password Memorability”, In Proceedings of the 5th Nordic Conference on Human-Computer Interaction: Building Bridges, Oct. 20, 2008, 10 Pages.
- Wertheimer, Max, “Laws of Organization in Perceptual Forms”, In a Source Book of Gestait Psychology. Chapter 5 Routledge and Kegan Paul Ltd., Jan. 1923, 18 Pages.
- Wiedenbeck, et al., “Authentication Using Graphical Passwords: Effects of Tolerance and Image Choice”, In Proceedings of Symposium on Usable Privacy and Security, Jul. 6, 2005, 12 Pages.
- Wood, et al., “The Rorschach Inkblot Test: A Case of Overstatement”, In Journal of Assessment,vol. 6, Issue 4, Dec. 1999, pp. 341-351.
- Yan, Jianxin Jeff., “A Note on Proactive Password Checking”, In Proceedings of the Workshop on New Security Paradigms, Sep. 10, 2001, 9 Pages.
- Yan, Jianxin, et al., “The Memorability And Security Of Passwords—Some Empirical Results”, In Technical Report No. UCAM-CL-TR-500, University of Cambridge, Computer Laboratory, Sep. 2000, 13 Pages.
- “Ultra-Mobile PC Your life. At the touch of your finger”, Retrieved From: https://web.archive.org/web/20110331143047/http://www.microsoft.com/windows/products/winfamily/umpc/default.mspx, Retrieved Date: Mar. 25, 2011, 1 Page.
- “Extended European Search Report Issued in European Patent Application No. 09711593.5”, dated Jun. 9, 2011, 7 Pages.
- “Non Final Office Action Issued in U.S. Appl. No. 10/187,311”, dated May 1, 2006, 21 Pages.
- “Non Final Office Action Issued in U.S. Appl. No. 10/187,311”, dated Nov. 7, 2005, 17 Pages.
- “Non Final Office Action Issued in U.S. Appl. No. 10/187,311”, dated Oct. 17, 2006, 19 Pages.
- “Office Action Issued in Taiwan Patent Application No. 101118546”, dated Nov. 30, 2015, 9 Pages.
- “Office Action Issued In Korean Patent Application No. 10-2013-7031038”, dated Jul. 10, 2017, 16 Pages.
- “Office Action Issued In Taiwan Patent Application No. 105111115”, dated Sep. 21, 2016, 9 Pages.
- “Non Final Office Action Issued in U.S. Appl. No. 11/775,159”, dated Jul. 23, 2009, 17 Pages.
- “Non Final Office Action Issued in U.S. Appl. No. 11/775,159”, dated Dec. 18, 2008, 16 Pages.
- “Extended Search Report Issued in European Patent Application No. 11866405.1”, dated Oct. 1, 2014, 7 Pages.
- “Office Action Issued In European Patent Application No. 11866405.1”, dated Feb. 27, 2018, 4 Pages.
- “Non Final Office Action Issued in U.S. Appl. No. 12/034,254”, dated Dec. 22, 2010, 11 Pages.
- “Non Final Office Action Issued in U.S. Appl. No. 12/485,952”, dated Dec. 1, 2011, 14 Pages.
- “Office Action Issued In Philippines Patent Application No. 12013502354”, dated Dec. 14, 2015, 2 Pages.
- “Final Office Action Issued In U.S. Appl. No. 13/163,201”, dated May 2, 2013, 32 Pages.
- “Non Final Office Action Issued In U.S. Appl. No. 13/163,201”, dated Oct. 10, 2012, 29 Pages.
- “Non Final Office Action Issued In U.S. Appl. No. 13/656,594”, dated May 30, 2013, 19 Pages.
- “Non Final Office Action Issued In U.S. Appl. No. 13/656,594”, dated Apr. 23, 2014, 24 Pages.
- “Non-Final Office Action Issued In U.S. Appl. No. 13/656,594”, dated Jan. 4, 2013, 17 Pages.
- “Office Action Issued In Colombian Patent Application No. 13299227”, dated Nov. 20, 2015, 11 Pages.
- “Office Action Issued In Colombian Patent Application No. 13299227”, dated Jul. 13, 2018, 21 Pages.
- “Office Action Issued In Colombian Patent Application No. 13299227”, dated Sep. 24, 2014, 12 Pages.
- “Office Action Issued In Canadian Patent Application No. 2836052”, dated Jul. 31, 2017, 4 Pages.
- “Office Action And Search Report Issued In Australian Patent Application No. 2011202415”, dated Nov. 24, 2011, 5 Pages.
- “Office Action Issued In Australian Patent Application No. 2011202415”, dated Feb. 22, 2012, 1 Page.
- “First Office Action and Search Report Issued in Chinese Patent Application No. 201180071045.2”, dated May 25, 2015, 17 Pages.
- “Office Action Issued In Chinese Patent Application No. 201180071045.2”, dated Mar. 8, 2017, 13 Pages.
- “Notice of Re-Examination Issued in Chinese Patent Application No. 201180071045.2”, dated Mar. 26, 2018, 12 Pages.
- “Second Office Action Issued In Chinese Patent Application No. 201180071045.2”, dated Feb. 1, 2016, 17 Pages.
- “Third Office Action Issued In Chinese Patent Application No. 201180071045.2”, dated Aug. 16, 2016, 15 Pages.
- “Office Action Issued In Russian Patent Application No. 2013152162”, dated Sep. 11, 2015, 5 Pages.
- “Office Action Issued In Japanese Patent Application No. 2014-512815”, dated Jul. 28, 2015, 7 Pages.
- “Office Action Issued In Japanese Patent Application No. 2014-512815”, dated Jan. 26, 2016, 8 Pages.
- “Office Action Issued In Chilean Patent Application No. 3341-2013”, dated Feb. 9, 2016, 6 Pages.
- “Office Action Issued In Chilean Patent Application No. 3341-2013”, dated Jul. 14, 2015, 7 Pages.
- “Office Action Issued In New Zealand Patent Application No. 618124”, dated May 14, 2014, 2 Pages.
- Angeli, et al., “Is a Picture Really Worth a Thousand Words? Exploring the Feasibility of Graphical Authentication Systems”, In International Journal of Human Computer Studies, vol. 63, Nos. 1-2, Jul. 1, 2005, 34 Pages.
- Angeli, et al., “Usability and User Authentication: Pictorial Passwords vs. Pin”, In Book, Contemporary Ergonomics, Jan. 2003, 6 Pages.
- Angeli, et al., “VIP: A Visual Approach to User Authentication”, In Proceedings of the Working Conference on Advanced Visual Interfaces, May 22, 2002, pp. 316-323.
- Ballard, Dana H., “Generalizing the Hough Transform to Detect Arbitrary Shapes”, In Journal of Pattern Recognition, vol. 13, No. 2, Jan. 1, 1981, pp. 111-122.
- Bishop, et al., “Improving System Security via Proactive Password Checking”, In Journal of Computers and Security, vol. 14, No. 3, Apr. 1995, 16 Pages.
- Brostoff, et al., “Are Passfaces More Usable than Passwords A Field Trial Investigation”, In Journal of People and Computers XIV—Usability or Else!, Jan. 2000, 20 Pages.
- Chalkias, et al., “Multi-Grid Graphical Password Scheme”, In Proceedings of the 6th International Conference on Artificial Intelligence and Digital Communications, Aug. 18, 2006, 11 Pages.
- Curtis, et al., “Computer Generated Watercolor”, In Proceedings of the 24th Annual Conference on Computer Graphics and Interactive Techniques, Aug. 3, 1997, 10 Pages.
- Dhamija, et al., “Deja Vu: A User Study Using Images for Authentication”, In Proceedings of 9th Conference on USENIX Security Symposium, vol. 9, Aug. 14, 2000, 14 Pages.
- Dhamija, Rachna, “Hash Visualization in User Authentication”, In Proceedings of CHI '00 Extended Abstracts on Human Factors in Computing Systems, Apr. 1, 2000, 2 Pages.
- Diaz, et al., “A Comparative Evaluation of Finger-Drawn Graphical Password Verification Methods”, In Proceedings of 12th IEEE International Conference on Frontiers in Handwriting Recognition, Nov. 16, 2010, 6 Pages.
- Dirik, et al., “Modeling User Choice in the PassPoints Graphical Password Scheme”, In Proceedings of the 3rd Symposium on Usable Privacy and Security (SOUPS), Jul. 2007, 9 Pages.
- Doja, et al., “Virtual Password: Virtual Environment Based User Authentication”, In Proceedings of the International Conference on Security & Management, Jul. 14, 2008, 6 Pages.
- “Office Action Issued in Candian Patent APplication No. 2,990,803”, dated Apr. 12, 2019, 3 Pages.
- “Office Action issued in Canadian Patent Application No. 2,990,808”, dated Apr. 12, 2019, 3 Pages.
- Ian Jermyn, Alain May, Fabian Monrose, Michael Riter, Avi Rubin, “The Design and Analysis of Graphical Passwords”, Aug. 1999, Proceedings of the 8th USENIX Security Symposium, pp. 1-15.
Type: Grant
Filed: Jan 12, 2017
Date of Patent: Jul 16, 2019
Assignee: Microsoft Technology Licensing, LLC (Redmond, WA)
Inventors: Matthew E. Kowalczyk (Seattle, WA), Russell Humphries (Horley SY), Erik L. Holt (Sammamish, WA)
Primary Examiner: William H. Wood
Application Number: 15/405,205
International Classification: G06F 21/00 (20130101); G06F 21/31 (20130101); G06F 21/32 (20130101); G06F 21/36 (20130101);