Direction-Based Authentication: Combining Symbolic Input and Contextual Cues for Virtual Reality Password Entry
Yuxuan Huang*, Danhua Zhang*, Evan Suma Rosenberg
Overview
This paper presents Direction-Based Authentication (DBA), a novel authentication method for virtual reality that combines symbolic input and contextual information to balance efficiency with memorability. In DBA, the password consists of four view directions selected by the user across four virtual environments. The user can either physically turn their head or use buttons to select directions, and remember the directions by either symbol or visual context.
We conducted a within-subjects study (N=32) to evaluate the efficiency, memorability, and security compared to methods based on symbols or context only. The results demonstrated that password entry with DBA was more efficient than the contextual-only approach. While recall rate was not significantly higher than the symbolic-only method, participants’ subjective ratings indicated that DBA better supported memorability. All three methods were highly resistant to observational attack, although the user-defined passwords appeared homogeneous in certain cases.
Overall, the study shows that combining symbolic and contextual information is promising to balance efficiency with memorability for VR authentication, but potential usability and security issues can arise without careful consideration. Based on these findings, we discussed future directions for optimizing the usability and security of DBA and insights regarding participants’ reliance on symbolic vs. visual information.
References
Huang, Y., Zhang, D., & Rosenberg, E. S. (2024, October). Direction-Based Authentication: Combining Symbolic Input and Contextual Cues for Virtual Reality Password Entry. In 2024 IEEE International Symposium on Mixed and Augmented Reality (ISMAR) (pp. 681-689). IEEE. Paper
Huang, Y., Zhang, D., & Rosenberg, E. S. (2023, March). DBA: direction-based authentication in virtual reality. In 2023 IEEE conference on virtual reality and 3D user interfaces abstracts and workshops (VRW) (pp. 953-954). IEEE. Paper
Statement: If no specific statement in the content, the copyright belongs to Yuxuan Huang . Reprint please indicate the link of this article.
(The content is authorized with CC BY-NC-SA 4.0 protocol)
Title:《 Direction-Based Authentication: Combining Symbolic Input and Contextual Cues for Virtual Reality Password Entry 》
Link:https://yuxuan-huang97.github.io/research/DBA/
The last update of this article was days ago, so it may be outdated!
Contents
CS PhD candidate @UMN