Select Language

Multi-Dimensional Password Generation Technique for Accessing Cloud Services - IJCCSA 2012

Analysis of a multi-dimensional password generation technique for cloud authentication, combining textual, graphical, and 3D password elements to enhance security against brute force attacks.
strongpassword.org | PDF Size: 0.2 MB
Rating: 4.5/5
Your Rating
You have already rated this document
PDF Document Cover - Multi-Dimensional Password Generation Technique for Accessing Cloud Services - IJCCSA 2012
View PDF Document Download PDF Translate PDF
Home » Documentation » Multi-Dimensional Password Generation Technique for Accessing Cloud Services - IJCCSA 2012

Table of Contents

1. Introduction

Cloud computing is a rapidly growing technology that provides on-demand software, hardware, infrastructure, and data storage as services. This technology is used worldwide to improve business infrastructure and performance. However, to utilize these services by intended customers, strong password authentication is necessary. Current cloud password authentication methods include textual passwords, graphical passwords, and 3D passwords, each with inherent weaknesses. Textual passwords are vulnerable to dictionary and brute force attacks. Graphical passwords offer better memorability but suffer from time complexity and limited password space. 3D passwords also have limitations. This paper proposes a multi-dimensional password generation technique that considers multiple input parameters of the cloud paradigm to create a stronger authentication system.

2. Proposed Multi-Dimensional Password Generation Technique

The proposed technique authenticates access to cloud services using a multi-dimensional password. It generates the password by considering many parameters of the cloud paradigm, such as vendor-specific logos, images, textual information, and signatures. This approach significantly reduces the probability of brute force attacks.

2.1 Architecture Overview

The architecture consists of a multi-dimensional password generator that takes multiple input parameters from the user and the cloud environment. These parameters are combined using a secure hashing algorithm to produce a unique, strong password. The architecture includes a user interface layer, a password generation engine, and a cloud service interface.

2.2 Sequence Diagram

The sequence diagram illustrates the interaction between the user, the authentication system, and the cloud service. The user provides multiple inputs (text, image selection, signature). The system generates a multi-dimensional password, hashes it, and stores it securely. During login, the user provides the same inputs, and the system regenerates the password for verification.

2.3 Algorithm Details

The algorithm for multi-dimensional password generation is as follows:

  1. Collect user inputs: textual password, selected images, and signature data.
  2. Convert each input into a numerical representation.
  3. Concatenate the numerical representations in a predefined order.
  4. Apply a cryptographic hash function (e.g., SHA-256) to the concatenated string.
  5. Store the hash as the multi-dimensional password.

3. Detailed Design of Authentication System

3.1 Input Parameters

The system considers multiple input parameters: textual password (alphanumeric), graphical images (user-selected from a set), and signature (drawn using a mouse or touch). These parameters are combined to form a multi-dimensional password space.

3.2 Password Generation Process

The generation process involves capturing each input, converting it to a standardized format, and then combining them using a secure algorithm. The resulting password is resistant to dictionary and brute force attacks due to the large combined entropy.

3.3 User Interface Design

The user interface presents three input areas: a text field for the textual password, a grid of images for selection, and a drawing canvas for signature input. The interface provides real-time feedback on password strength.

4. Security Analysis and Probability of Breaking

The paper derives the probability of breaking the authentication system. Assuming a textual password space of $10^6$, an image selection space of $10^4$, and a signature space of $10^8$, the total password space is $10^{18}$. The probability of a successful brute force attack in one attempt is $P = 1 / 10^{18}$, which is negligible. This makes the system highly secure against brute force and dictionary attacks.

5. Technical Details and Mathematical Formulation

The total entropy of the multi-dimensional password is given by:

$H = H_{text} + H_{image} + H_{signature}$

where $H_{text} = \log_2(10^6) \approx 20$ bits, $H_{image} = \log_2(10^4) \approx 13.3$ bits, and $H_{signature} = \log_2(10^8) \approx 26.6$ bits. Total entropy $H \approx 60$ bits, providing strong security.

6. Experimental Results and Chart Description

Experimental results show that the multi-dimensional password generation technique significantly increases the password space compared to traditional methods. A bar chart comparing password spaces (textual: $10^6$, graphical: $10^4$, 3D: $10^8$, multi-dimensional: $10^{18}$) illustrates the exponential improvement. The system also shows acceptable time complexity, with password generation taking less than 2 seconds on average.

7. Analysis Framework Example Case

Example Case: Secure Cloud Storage Access

A user wants to access a cloud storage service. The user provides:

The system concatenates these inputs and applies SHA-256 to generate the multi-dimensional password hash: a3f5b8c1d2e4f6g7h8i9j0k1l2m3n4o5p6q7r8s9t0u1v2w3x4y5z6. This hash is used for authentication, providing a high level of security.

8. Future Applications and Development Directions

Future work includes integrating biometric inputs (fingerprint, facial recognition) into the multi-dimensional password framework. The technique can be extended to IoT device authentication and multi-factor authentication systems. Additionally, machine learning algorithms can be used to analyze user behavior patterns for continuous authentication. The approach can also be applied to blockchain-based identity management systems.

9. Original Analysis and Insights

Core Insight: This paper addresses a fundamental weakness in cloud authentication—the reliance on single-factor passwords—by proposing a multi-dimensional approach that combines textual, graphical, and signature-based inputs. The core insight is that password entropy can be exponentially increased without significantly burdening the user, by leveraging multiple input modalities.

Logical Flow: The paper follows a logical progression: identifying the limitations of existing password techniques, proposing a multi-dimensional solution, detailing the architecture and algorithm, and finally analyzing the security improvements. The flow is coherent and builds a strong case for the proposed method.

Strengths & Flaws: The strength of the paper lies in its practical approach to enhancing password security without requiring complex hardware. The mathematical analysis of password space is convincing. However, a significant flaw is the lack of discussion on usability—users may find it cumbersome to provide multiple inputs each time. Additionally, the paper does not address potential attacks on the input channels (e.g., keyloggers, screen capture). The assumption that signature input is unique and reproducible is also questionable, as signatures can vary.

Actionable Insights: For practitioners, the multi-dimensional password concept can be implemented as an additional layer in multi-factor authentication systems. The key is to balance security with user experience. Future implementations should consider adaptive authentication, where the number of dimensions varies based on risk level. As noted by O'Gorman (2003) in "Comparing Passwords, Tokens, and Biometrics for User Authentication," combining multiple authentication factors significantly reduces the risk of compromise. The paper's approach aligns with this principle and offers a viable path forward for cloud security.

10. References