20-09-2017, 09:17 AM
3D passwords are more customizable and very interesting form of authentication. Passwords are now based on the fact of human memory. In general, simple passwords are set to quickly remember them. The human memory, in our scheme has to undergo the facts of Recognition, Recalling, Biometry or Token based on the authentication. Once deployed and log on to a secure site, the 3D password GUI will open. This is an additional textual password that the user can simply put. Once you pass the first authentication, a virtual 3D room will open on the screen. In our case, let's say a virtual garage. Now in a day to day garage you will find all sorts of tools, equipment, etc. each of them with unique properties. The user will then interact with these properties accordingly. Each object in 3D space can be moved around in a plane (x, y, z). That is the mobile attribute of each object. This property is common to all objects in space. Suppose a user logs in and enters the garage. Go and pick up a screwdriver (initial position in xyz (5, 5, 5) coordinates) and move it to 5 places to its right (in the XY plane ie (10, 5, 5) .This can be identified as authentication Only true user understands and recognizes the object that has to choose among many. This is the Recall and Recognition part of the human memory coming into play. It is interesting that a password can be set to approach a radio and setting its frequency to number only the user knows. Security can be improved by the fact of including cards and biometric scanner as input.
Current authentication systems suffer from many weaknesses. Textual passwords are commonly used. Users tend to choose meaningful dictionary words, which make text passwords easy to break and vulnerable to dictionary attacks or brute force attacks. Many graphic passwords available have a password space that is less than or equal to the textual password space. Smart cards or tokens can be stolen. Many biometric authentication has been proposed. However, users tend to resist the use of biometrics because of their intrusion and the effect on their privacy. In addition, biometrics can not be revoked. 3-Dpassword is a multi-factor authentication scheme. The design of the 3D virtual environment and the type of objects selected determine the 3D password key space. The user is free to select whether the 3D password will be uniquely called, recognized, or token-based, or combination of two schemes or more.
It can be understood in the following video: