KR20140035245A - Method and system for authentification using multi-tier, multi-class objects - Google Patents

Abstract

The present invention provides a method for authenticating a user in a touch screen environment. The method comprises a step of detecting a gesture, and a step of authenticating the user based on matching between a registered gesture and the detected gesture. The gesture includes a step of dropping objects from a first tier to a second tier, or dropping from the first tier to the second tier after passing through at least one in-between tier. [Reference numerals] (10) Gate driver; (116) Rectifying unit; (118) DC/DC convertor; (12) Nozzle discharge section selecting part; (124) Charging unit/PMIC; (14,114) Matching unit; (16) Injection device; (18) Control part; (20) Power supply unit; (200) Power transmitter; (22,122) Control unit; (24,120) Wireless communication unit; (250) Power receiver; (AA,BB) Communication

Description

METHOD AND SYSTEM FOR AUTHENTIFICATION USING MULTI-TIER, MULTI-CLASS OBJECTS}

The present invention relates to an authentication method, and more particularly, to an authentication method based on a gesture.

Devices with an authentication mechanism can prevent access to confidential information by denying unauthorized access. Today, most application systems are configured to include a touch screen user interface to make these systems more user friendly and to enhance the user experience. The use of such touch interfaces allows existing authentication applications to use a virtual keyboard displayed on the screen to provide input to the device. Alternatively, existing authentication applications may use a pattern or gesture-based input rather than a virtual keyboard displayed on the screen. In a gesture-based authentication system, a user can form a specific pattern on the screen of the device. If this pattern matches a pattern that is already registered, the system allows the user to access the device.

Many different systems implement a gesture based authentication mechanism. In a gesture-based authentication mechanism, a user is only allowed to select an object displayed on the screen once. As such, the user is restricted from repeatedly selecting objects in successive iterations. With existing gesture-based authentication systems, the possible wrong combination of objects displayed on the screen or the number of attempts is not sufficient to ensure the failure of unauthorized attempts.

As a result, the level of security achieved by this gesture or pattern based authentication mechanism is low compared to conventional numeric keypad systems. To improve security, the screen size of the device must be increased, which limits its use on small screen devices such as smartphones. In addition, potential fraudsters can easily observe and remember patterns entered by authorized users and attempt to access the device. Similarly, if the crook knows the number of objects to be selected in the pattern, the number of attempts to restrict unauthorized access to the device can be reduced.

In view of the above discussion, there is a need for an authentication method that is required for high security applications.

The primary purpose of embodiments of the present invention is to achieve a method and system for gesture-based authentication using multi-tier based multi-class objects.

Another object of the present invention is to achieve a high level of security by allowing a user to select objects in each tier regardless of the selection in the previous iteration.

The present invention provides a method for authenticating a user in a touch screen environment. The method includes detecting a gesture and authenticating a user based on matching the registered gesture with the detected gesture. The gesture includes dropping objects from the first tier to the second tier or dropping the objects from the first tier through the intermediate tier to the second tier.

The registered gesture includes dropping objects of the first tier to objects of the second tier in a plurality of / sequential iterations. In one embodiment, the number of dropped objects is equal to the length of the authentication key. In one embodiment, objects of the first tier and the second tier are displayed in the touch screen environment. In one embodiment, the middle tiers are represented between the first tier and the second tier. The registered gesture is set by the administrator. In one embodiment, detecting the gesture includes recording the number of objects dropped in the gesture. In one embodiment, the authentication includes matching a sequence of dropping objects.

As described above, the authentication method and system using the multi-tier, multi-class objects according to the embodiment of the present invention can provide a user with the ability to select an object in each tier regardless of the selection in the previous iteration. The effect is to achieve a level of security.

BRIEF DESCRIPTION OF THE DRAWINGS The present invention is described in the accompanying drawings, in which like reference characters indicate corresponding parts in the various figures. The embodiments herein will be better understood from the following description with reference to the accompanying drawings.
1 illustrates a touch screen device with modules in accordance with various embodiments of the present invention.
2 is a flowchart illustrating a method of authenticating a user of a touch screen device according to various embodiments of the present disclosure.
3 illustrates an authentication-key using a two-tier in accordance with various embodiments of the present invention.
4 illustrates an authentication-key using one intermediate tier with channels in accordance with various embodiments of the present invention.
5 illustrates an authentication-key using two middle tiers with channels in accordance with various embodiments of the present invention.
6 illustrates an authentication key of randomly ordered objects of a source tier and bins of a destination tier, in accordance with various embodiments of the present invention.
7 illustrates a computing environment for executing an application in accordance with various embodiments of the present invention.

Embodiments in the present invention and their various features and advantageous details are described more fully with reference to the non-limiting embodiments shown in the accompanying drawings and detailed in the following description. Descriptions of well-known components and processing techniques have been omitted so as not to unnecessarily obscure embodiments in the present invention. The examples used in the present invention are merely intended to facilitate understanding of the manners in which the embodiments herein may be practiced and to further enable those skilled in the art to practice the embodiments herein. Accordingly, the examples should not be construed as limiting the scope of the embodiments herein.

Embodiments of the present invention achieve a gesture-based authentication method and system using objects from a plurality of classes placed in a plurality of tiers. The method enables the touch screen device to display a plurality of objects. The method allows a user to select, drag and drop objects from the source tier through one or more intermediate tiers to the destination tier. A gesture-based authentication key (also referred to interchangeably as a 'password') is formed based on the number of objects selected with the sequence of dragging and dropping the selected objects. The method may allow the user to select objects regardless of previous iterations, thereby allowing a very high rejection of the con artist. The method described in the present invention increases the security level exponentially with a small increase in the number of objects in any tiers.

In addition, the present invention is widely applied to any type of system or application, such as a small screen device, a defense system, an automated teller machine (ATM), a door security system, or any other system. The method described herein is presented graphically and can be executed in a touch screen environment of a high security system. The method can be conveniently used by a person who can read and write, an illiterate person or who is having difficulty recalling or remembering English and numeric passwords. Graphical gesture based authentication provides easy integration of the method for devices used by children. The method allows the user to easily adjust the security level of the authentication mechanism according to his requirements. The user can increase the number of objects in the authentication key and / or the number of intermediate tiers to increase the level of security.

In the specification, the terms source tier and first tier are used interchangeably. The terms destination tier and second tier are used interchangeably. The terms gesture and pattern are used interchangeably. The terms touch screen device and touch screen environment are used interchangeably.

Referring now to the drawings, and in more detail, with reference to FIGS. 1 through 7 where like reference characters indicate corresponding features consistently throughout the drawings, preferred embodiments are shown.

1 illustrates a touch screen device 100 with modules in accordance with various embodiments of the present invention. The touch screen device 100 described herein may be configured to include a display module 102, a touch interface module 104, a storage module 106, and a communication interface module 108. The display module 102 of the touch screen device 100 may be configured to display a plurality of objects in a plurality of classes and a plurality of tiers. This display allows the user to select, drag and drop objects during authentication. The touch interface module 104 can be configured to extract a gesture provided by a user in the touch screen device 100. The storage module 106 may be a memory space used to store a plurality of objects and registered authentication keys. In one example, storage module 106 may be internal memory, such as read-only memory (ROM) and random access memory (RAM), or external memory. The communication interface module 108 may be configured to provide a mechanism for the touch screen device 100 to enable external communication with other devices.

In one embodiment, the touch screen device 100 described herein may be a cellular phone, a personal digital assistant (PDA), a personal computer, a portable device, a portable electronic device, communicators, a laptop, or the like.

2 is a flowchart 200 illustrating a method of authenticating a user of the touch screen device 100 according to various embodiments of the present disclosure. The authentication method for protecting the touch screen device 100 includes two steps: an authorization or registration step, and an authentication or verification step. In one example, authorization may be defined as the process of setting the touch screen device 100 to a gesture or pattern of user selection, with the help of objects selected by the user. The authorized gesture forms an authentication key. In addition, the number of objects selected to create a gesture determines the authentication key length. In one example, authentication may be defined as a process in which a user presents an authorized pattern for accessing the touch screen device 100.

In step 202 of the flowchart 200, the touch screen device 100 displays a plurality of objects in the multi-tier. In step 204, the user selects one object from among the plurality of objects in the first tier. In step 206, the user drops the selected object to the last tier from one of the plurality of elements in each intermediate tier. In one example, the method allows the touch screen device 100 to display a plurality of predefined intermediate tiers during the authentication process. In one example, during the authentication process, the user drops a selected object from the source tier through one element in each intermediate tier to the destination tier. The touch screen device 100 verifies whether the gesture executed by the user matches the gesture defined during authorization (registration). In one embodiment, the path taken by the dropped object may be displayed on the screen, thereby helping the user track the path. In one example, the method may record the number of dropped objects and the sequence of dropped objects.

In operation 208, the touch screen device 100 checks whether the number of objects dropped by the user matches the authentication key length. If the dropped objects do not match the authentication key length, the touch screen device 100 maintains the objects displayed on the screen so that the user can complete the selection and dropping sequence. In one embodiment, in step 210, if the dropped objects successfully match the authentication key length, the touch screen device 200 compares the recorded objects with their paths with the stored (authorized) authentication key.

In one embodiment, in step 212, if the stored authentication key does not match the objects dropped by the user, the method may allow the touch screen device 200 to repeat steps 202-212. In one embodiment, at step 214, the user may be allowed to access touch screen device 100 after a successful match. It may be noted that the various operations executed in flowchart 200 may be executed in the order presented and / or in another order. In addition, in some embodiments, some of the operations listed in FIG. 2 may be omitted.

3 illustrates an authentication-key using a two-tier in accordance with various embodiments of the present invention. The two tiers described herein can include a source tier 300 and a destination tier 302, respectively. In one embodiment, destination tiers 302 may include elements B1, B2, B3 (referred to as reservoirs), while source tier 300 may include elements O1 O2, O3, and O4 ( Objects).

In general, source set O (called objects) may include a plurality of elements β, and destination set B (called bins) is represented by Equation 1 And may include a plurality of elements β as described in Equation 2:

In one embodiment, to authorize the touch screen device 100, the user drags and drops an object from source set O to the storage of destination set B. For example, a user can drag and drop object O1 from source set O to storage B1. In one example, the user can repeat the process for different objects. For each iteration, the selection of an object from source set O or a storage from destination set B is independent of the corresponding selection in previous iterations. Thus, the method may allow the user to repeatedly select objects and repositories. The sequence or order of dropping objects from source set O to destination set B's repositories can be considered as an authentication key. In addition, the number of objects dropped from the source set to the repositories of the destination set may provide the authentication key length (L). Objects of source set O can be dropped into the repositories of destination set B based on equations 3-7 given below:

로서 고려될 수 있다. 순차적 순서

는 인증키이며, L은 인증 키 길이이다. Where? Indicates dropping elements from one set to another. In one example, the q th iteration of dropping source set element Oi to destination element Bj

Can be considered as. Sequential order

Is the authentication key and L is the authentication key length.

3 illustrates a process for authenticating using 2-tiers of objects. In one example, source tier 300 may include four elements (O1, O2, O3, and O4 (called objects)), and destination tier 302 may include three elements (B1, B2, and B3 ( May be included). The sequence / order of objects dropped into the respective repositories serves as an authorized authentication key. The sequence order as shown in FIG. 3 for the authentication key length (L = 7) is given in the equation below.

로서 존재한다.Equations 8, 9, 10, 11, 12, 13, and 14 indicate the actions performed by the user during authentication. In one example, during a first iteration, object O1 of source tier 300 may be dropped into repository B1 of destination tier 301. In one example, during a second iteration, object O2 of source tier 300 may be dropped into repository B3 of destination tier 301. In one example, during a third iteration, object O4 of source tier 300 may be dropped into repository B3 of destination tier 301. In one example, during the fourth iteration, object O3 of source tier 300 may be dropped into repository B2 of destination tier 301. In one example, during a fifth iteration, object O1 of source tier 300 may be dropped into storage B2 of destination tier 301. In one example, during a sixth iteration, object O2 of source tier 300 may be dropped into repository B1 of destination tier 301. In one example, during a seventh iteration, object O4 of source tier 300 may be dropped into storage B3 of destination tier 301, thereby creating an authentication key length L equal to seven, where the authentication key is

Exist as.

와 같이 같은 동일한 시퀀스 순서로 소스 티어(300)의 객체들 O1, O2, O3, 및 O4를 목적지 티어(301)의 저장소들 B1, B2 및 B3로 드롭한다. 일 실시예에서, 만약 사용자가 인증 키 시퀀스 순서(authentication key sequence order)를 따르는데 실패하면, 사용자는 터치 스크린 장치(100)의 액세스가 거부될 수 있다.In one embodiment, during the authentication process, the user is in accordance with an authorized authentication key having a length of 7

Drop objects O1, O2, O3, and O4 of the source tier 300 into the repositories B1, B2, and B3 of the destination tier 301 in the same sequence order as follows. In one embodiment, if the user fails to follow the authentication key sequence order, the user may be denied access to the touch screen device 100.

In one embodiment, the user can select elements of the source set and elements of the destination set from equations 1 and 2. The source set and the destination set may use different elements. For example, if the device is being used by children, the elements of source tier 300 may be fruits, and the elements of destination tier 302 may be baskets or boxes. Can be entered. In another example, elements within source tier 300 may include a video clip (or live video) of various sporting events, and elements of destination tier 302 may include display names of such sporting event. The user can then drop the selected video clip to the corresponding sporting events.

In one embodiment, the elements of source tier 300 and destination tier 302 may be toys, pets, cages, combinations thereof, or any other element. In one example, these elements may be stored in storage module 106 as a gallery set.

4 illustrates an authentication key using one intermediate tier with channels in accordance with various embodiments of the invention. In one embodiment, the method described herein allows a user to use a plurality of intermediate tiers (such as C1, C2,..., Cζ) between the source tier 300 and the destination tier 302. Allowing may provide improved security for the touch screen device 200. As described in Equations 1 and 2, source set O and destination set B may include a plurality of elements. In one example, each of the middle tiers may also include a plurality of elements called channels. The intermediate tiers C1, C2, ... Cζ may comprise indefinite numbers of channels, called γ, δ, ... η channels, respectively, where τ≥ 0, and γ, ?, ...?> 1.

The general form of all elements of all tiers used by the methods described here among the authentication mechanisms is:

와 같은 채널들을 통해 소스 티어(300)로부터 목적지 티어(302)의 저장소 Bj로 객체 Oi를 드롭핑한 제q 반복은 다음의 수학식 21과 같이 주어질 수 있다. In one example, L represents the number of objects dropped from the source tier 300 to the repositories of the destination tier 302 through one channel, and the sequence / order of dropping the objects into the repositories is an authentication key. Form. In one example, intermediate tiers such as 1,2, .., τ

The q-th iteration of dropping the object Oi from the source tier 300 to the storage Bj of the destination tier 302 through channels such as can be given by Equation 21 below.

Where 0 <i ≦ α, 0 <j ≦ β, 0 <x ≦ γ, 0 <y ≦ δ and 0 <z ≦ η.

In one example, each of the selected objects Oi of the source tier 300 passes through one channel in each intermediate tier before dropping into one of the selected storage Bj of the destination tier 302. The sequence / order of dropping objects from source set O to destination set B is as follows:

Where? Denotes dropping elements from one set to another.

는 중간 티어 i에 있는 채널 k를 나타낸다. 중간 티어들 1,2,...τ에 있는 채널들

을 통과해 소스 집합 객체 Oi를 목적지 저장소인 Bj로 드롭핑하는 제q 반복은

로서 표시될 수 있다. 길이(L)의 인증 키를 부여하는 일반화된 시퀀스 순서는 다음의 수학식 26과 같이 주어진다.In generalized form,

Represents channel k in the middle tier i. Channels in the middle tiers 1,2, ... τ

The iterative iteration through which the source aggregation object Oi is dropped into Bj, the destination repository,

Lt; / RTI &gt; The generalized sequence order of giving the authentication key of length L is given by the following equation (26).

와

채널들과 같이 두 개의 채널을 포함할 수 있다. 사용자는 소스 티어(300)로부터 중간 티어(400)의 채널들을 통과해 목적지 티어(301)의 저장소들로 객체들을 드롭함으로써 인증 키를 인가한다. 일 실시예에서, 사용자는 특정 사용자 선택 시퀀스 순서로 객체들을 드롭할 수 있다. 일 예에서, 제1 반복 중에, 사용자는

을 통과해 B1으로 O1를 드롭할 수 있고, 제2 반복 중에, 사용자는

을 통과해 B3으로 O2를 드롭할 수 있고, 제3 반복 중에, 사용자는

을 통과해 B3으로 O4을 드롭할 수 있고, 제4 반복 중에, 사용자는

을 통과해 B2으로 O3를 드롭할 수 있고, 제5 반복 중에, 사용자는

을 통과해 B2으로 O1를 드롭할 수 있고, 제6 반복 중에, 사용자는

을 통과해 B1으로 O2를 드롭할 수 있고, 제7 반복 중에, 사용자는

을 통과해 B3으로 O4를 드롭할 수 있다. 일 예에서, 그러므로, 인증 키 길이(L)는 7과 동일하고, 인증 키는

으로서 설명될 수 있다.4 shows source tier 300, destination tier 302, and intermediate tier 400. The intermediate tier 400 described herein is

Wow

Like channels, it can include two channels. The user applies the authentication key by dropping objects from the source tier 300 through the channels of the intermediate tier 400 to the repositories of the destination tier 301. In one embodiment, a user may drop objects in a specific user selection sequence order. In one example, during the first iteration, the user

Can drop O1 to B1, and during the second iteration,

Can drop O2 to B3, and during the third iteration,

Can drop O4 to B3, and during the fourth iteration,

And drop O3 to B2, and during the fifth iteration,

And drop O1 to B2, and during the sixth iteration,

Can drop O2 to B1, and during the seventh iteration,

You can drop O4 through B3. In one example, therefore, the authentication key length L is equal to 7, and the authentication key is

It can be described as.

In one example, if the user wants to access the touch screen device 100, the user must drop the objects of the source tier 300 to the destination tier 302. The sequence / order of dropping objects must be the same as the authentication key. If the user fails to follow the defined sequence, the user is denied access to the touch screen device 100.

와

와 같은 두 개의 채널들을 포함할 수 있고, 중간 티어(502)는

,

및

와 같은 3 개의 채널들을 포함할 수 있다. 터치 스크린 장치(100)의 사용자는 중간 티어(500) 특정 사용자 선택 시퀀스로 소스 티어(300)로부터 중간 티어들(500, 502)의 채널들을 통과해 목적지 티어(302)의 저장소들로 객체들을 드롭핑함으로써 인증 키를 인가한다. 일 예에서, 도 5에 도시된 시퀀스는

에 의해 주어진 바와 같이 7의 길이의 인증 키를 제공한다. 5 illustrates an authentication key using two intermediate tiers with channels in accordance with various embodiments of the present invention. 5 shows source tier 300, destination tier 302, and two intermediate tiers 500 and 502. Intermediate tiers are provided between the source tier 300 and the destination tier 302. In one example, the middle tier 500 is

Wow

It may include two channels, such as, middle tier 502

,

And

It may include three channels, such as. The user of the touch screen device 100 drops objects from the source tier 300 through the channels of the intermediate tiers 500, 502 to the stores of the destination tier 302 in the middle tier 500 specific user selection sequence. Ping to authorize the authentication key. In one example, the sequence shown in FIG.

Provide an authentication key of length 7 as given by.

6 generally illustrates an authentication-key of randomly ordered objects and repositories in accordance with various embodiments of the present invention. In one example, as shown in FIG. 5, objects are randomly placed between the source tier 300 and the destination tier 302. In one example, the order of objects in source tier 300 is changed to O2, O1, O3, and O4, and the order of stores in destination tier 302 is changed to B2, B1, and B3. A random or shuffled arrangement of objects and repositories can be run for every instance of authentication so that a con artist or con artist can be confused. Thus, the sequence / order of dropping objects into repositories has not changed, only known to authorized users.

로서 존재한다.In one example, the authentication key generated during the authentication process drops the object O1 of the source tier 300 to the repository B1 of the destination tier 302 during the first iteration, and the object O2 of the source tier 300 during the second iteration. Dropping into the storage B3 of the destination tier 302, dropping the object O4 of the source tier 300 into the storage B3 of the destination tier 302 during the third iteration, and dropping the object of the source tier 300 during the fourth iteration. Dropping object O3 into storage B2 of destination tier 302, dropping object O1 of source tier 300 into storage B2 of destination tier 302 during the fifth iteration, and source tier 300 during the sixth iteration. Dropping the object O2 of) into the storage B1 of the destination tier 302, and dropping the object O4 of the source tier 300 to the storage B3 of the destination tier 302 during the seventh iteration. In one example, seven iterations define an authentication key length (L) equal to 7, where the authentication key is

Exist as.

In one example, the authentication key defined in the present invention is the same as defined in FIG. 3, but with a different pattern of dropping objects in the source tier 300 to the stores in the destination tier 301. In one example, fraudsters mimicking the observed pattern are denied use of the touch screen device 100. Thus, the method provides improved security for the touch screen device 100 by randomly ordering the displayed objects (rather than having a fixed or static display pattern).

In one embodiment, the location of the user may be identified from applications such as a satellite navigation system (GPS), system time and date applications installed on the touch screen device 100, user profiles, or any other application. In addition, based on user location information, the method may allow the touch screen device 100 to change the display or gallery set of the screen accordingly. For example, a user can apply the touch screen device 100 to different gallery sets.

In one embodiment, the method may allow the touch screen device 100 to easily add empty or dummy bins among existing bins of the destination tier 302. Any objects in source tier 300 dropped into dummy repositories may be ignored or considered based on the preference of the authorized user. If the user is aware of a potential fraudster, the user can drop objects into a dummy repository that cannot be accounted for according to the preferences of the authorized user. Thus, a crook who may attempt to imitate a user gesture does not notice the dummy store and fails to access the touch screen device 100. In one embodiment, the dummy objects may be part of the objects of the source tier 300. Dummy objects dropped into true bins or dummy bins can be ignored. These dummy objects in the source tier 300 or dummy repositories in the destination tier 302 can provide a number of folds as compared to static pattern based authentication to improve security. have.

In one embodiment, the method may allow the touch screen device 100 to easily perform a plurality of authentication checks in which all authentication checks can be adjusted to different security levels based on the requirements of the user. For example, a user may have a low security level of authentication for unlocking a smartphone, but may include a high security level authentication check for certain sensitive files or folders. The security level can be configured by the user by using a larger number of intermediate tiers and thereby allowing others to access the smartphone without the user worrying about the secret being disclosed.

analysis

The comparative analysis shows that the proposed method is much more secure than the existing gesture-based authentication method. The evaluation scale presents a mathematical analysis of the method using existing methods. Source tier 300 represented by source set O and destination tier 301 represented by destination set B have α and β objects, respectively, as shown in Equations 1 and 2, and intermediate tiers 1,2, ... τ may comprise γ, δ, η channels, respectively. Existing methods may include only one set of objects, such as the alphabet set, to achieve fair comparisons. The sum of the number of elements from all tiers that may include the source tier, the destination tier, and all the intermediate tiers is considered as an alphabetic set of size χ and is represented by Equation 27.

The scale used for the comparison can be, for example, Elimination Combinations (EC), Visual Eliminations (VE), and Effective Eliminations (EE).

The EC described herein may be defined as the number of false combinations or challenges or rejections that the system presents for a fraudulent user or fraudster. The more removals, the better the security. In the disclosed method, for each iteration, the selection of elements from the source, destination, or intermediate tiers is independent of the corresponding selection of the previous iteration. The EC for the authentication key of length L is given by Equation 28 below.

In the existing gesture-based authentication method, there is a limitation that an object selected from the alphabet set χ cannot be repeated. The existing system removal combinations (PEC), for the authentication key of length L, are as follows:

If an authorized user has an opportunity to visually observe the authentication key while a fraudster or fraudulent user is authenticating the graphical secure touch screen device 100, the VE described herein may be considered. A fraudulent user can access the touch screen device 100 by providing an observed authentication pattern or gesture. The VE gives the total number of background changes for entering the authentication pattern. The VE of this method is given by the following equation (30).

Therefore, the visual elimination is constant and is given by the following equation (31).

The EE described herein confers the total number of rejections or difficulties that the system presents to fraudulent users or fraudsters because of removal combinations and visual removal.

Since elimination opportunities and visual eliminations are interdependent, the efficient elimination of the fraudulent user (EE) for the proposed system is given by Eq.

On the other hand, efficient removal of fraudulent users (PEE) for the existing method is given by the following equation (33).

Mathematical analysis

Mathematical analysis of the method and system (derived from equations 28 and 29) shows that the elimination combination (EC) of this method is exponential. Existing system removal combinations (PECs) are factorial for authentication keys of length L. If the fraudulent user or fraudster finds the length L of the authentication key from (28), the proposed system proposes (α x β x γ x δ, ..., η) L elimination combinations. In other words, a successful con artist is 1: (α × β × γ × δ, ..., η) L, thereby allowing the user to repeatedly select an element in all tiers. Therefore, if the fraudulent user or fraudster does not know the length L of the authentication key, the proposed system has the number of elimination combinations of EC = (α × β × γ × δ, ... η) ∞. In other words, a successful negative user is 1: ∞. The chances of a scammer's success are very low. Equation 21 shows that the security of the proposed system is directly related to the number of elements in all tiers, such as the number of source tiers, destination tiers, intermediate tiers 1,2, ... τ channels γ, δ, η. Proportional to Therefore, changing these parameters may change the security level exponentially. Thus, with a small increase in these parameters, a higher level of security can be achieved compared to conventional methods.

In Equations 30 and 31, the VE generated in the proposed system is the product of factorial of the number of elements in each tier, although constant in the existing system. By increasing the number of elements in any of the plurality of tiers to a small value, the generated VE increases significantly compared to the PVE generated by existing systems. Therefore, the method of the present invention can be said to handle better sustained visual attacks by frauders than existing systems. Efficient removal is the product of EC and visual removals.

7 illustrates a computing environment for executing an application in accordance with embodiments disclosed herein. As shown, the computing environment includes at least one processing in which a control unit and an Arithmetic Logic Unit (ALU), memory, storage, a plurality of network devices, and a plurality of input / output (I / O) devices are mounted. Device. The processing unit is responsible for processing the instructions of the algorithm. The processing device receives instructions from the control device to execute the processing. In addition, any logical and arithmetic tasks related to the execution of instructions are computed with the aid of the ALU.

The overall computing environment may consist of a plurality of homogeneous and / or heterogeneous cores, a plurality of different kinds of CPUs, special media, and other accelerators. The processing device is responsible for processing the instructions of the algorithm. The processing device receives instructions from the control device to perform the processing. In addition, any logical and arithmetic tasks related to the execution of instructions are computed with the aid of the ALU. In addition, the plurality of processing devices may be located on a single chip or on a plurality of chips.

Embodiments disclosed herein may be executed through at least one software program that runs on at least one hardware device and executes network management functions to control the elements. The elements shown in FIGS. 1-7 include blocks that may be at least one of a hardware device or a combination of hardware device and software module.

The above description of specific embodiments will fully illustrate the general nature of the embodiments herein and others may readily modify and / or modify these specific embodiments for various applications without departing from the general concept by applying current knowledge. It is to be understood that such variations and modifications are, therefore, to be understood within the meaning and scope of equivalents of the disclosed embodiments. It is to be understood that the phraseology or terminology used herein is for the purpose of description and not of limitation. therefore. While the embodiments herein are described in terms of preferred embodiments, those skilled in the art will recognize that the embodiments herein may be practiced with modification within the spirit and scope of the embodiments as described herein. .

Claims (10)

In a method for authenticating a user in a touch screen environment,
Detecting a gesture of the user dropping at least one object from a first tier to a second tier; And
Authenticating the user if the gesture matches a registered gesture. The method of claim 1,
And the gesture further comprises dropping the at least one object from the first tier through the at least one intermediate tier into the second tier. The method of claim 1,
And the registered gesture comprises repeatedly dropping at least one object in the first tier to at least one object in the second tier at least once. The method of claim 3,
The registered gesture further comprises repeatedly dropping the at least one object from the first tier into a different object in the second tier. 5. The method of claim 4,
And wherein the dropped at least one object is the same as the authentication key length. The method of claim 1,
And the at least one object of the first tier and the second tier are displayed on the touch screen environment. 3. The method of claim 2,
Wherein the at least one intermediate tier is displayed between the first tier and the second tier in the touch screen environment. The method of claim 1,
The registered gesture is a method for authenticating a user in a touch screen environment set by an administrator. The method of claim 1,
The detecting step includes recording the number of objects dropped in the gesture. The method of claim 1,
And wherein authenticating comprises matching a sequence of dropping objects.

Images