Skip to main content
  1. Home
  2. Computing
  3. Emerging Tech
  4. Web
  5. News

Need a secure password? Use patterns and icons

Add as a preferred source on Google

In the never-ending battle for digital security, finding and remembering a good password seems to be the bane of our collective existences. After all, the most secure password is one that we can’t remember, and the most memorable ones are easily hacked. So what’s to be done? According to researchers at Plymouth University, we just need to start using patterns and images instead of letters and numbers. In a system known as GOTPass, users employ “images and a one-time numerical code” in order to secure important information. And if scientists are to be believed, this is a much safer alternative to currently available methods.

“Traditional passwords are undoubtedly very usable but regardless of how safe people might feel their information is, the password’s vulnerability is well known,” said study lead and PhD student Hussain Alsaiari. “There are alternative systems out there, but they are either very costly or have deployment constraints which mean they can be difficult to integrate with existing systems while maintaining user consensus.”

Recommended Videos

The setup is relatively simple — GOTPass asks users to draw a pattern atop a four by four grid (hearkening to Android’s pattern locks). Then, they choose an emoji-type icon from a grid of 30 such images. Once they’ve chosen four different emojis (from four different grinds), they’ll have a brand new “password.”

The usage process, on the other hand, is a bit more complex. To log in, you’ll provide a username, then draw your pattern, then correctly identify two of the four emojis you previously chose from the 16 different possibilities displayed. Once you’ve proven that you are, in fact, the person you claim to be, you’ll be granted a one-time passcode. Sure, it seems like quite a bit of work, but when you’re looking to protect your identity, it’s an easy trade-off. And really, it probably takes no more time than a 2-factor authentication.

Impressively, in 690 initial tests of the GOTPass system, only 3.33 percent of attempted hacks proved successful. Says Alsiari, “The GOTPass system is easy to use and implement, while at the same time offering users confidence that their information is being held securely.”

Dr Maria Papadaki, Lecturer in Network Security at Plymouth University and director of the PhD research study, agreed, noting, “In order for online security to be strong it needs to be difficult to hack, and we have demonstrated that using a combination of graphics and one-time password can achieve that. This also provides a low cost alternative to existing token-based multi-factor systems, which require the development and distribution of expensive hardware devices. We are now planning further tests to assess the long-term effectiveness of the GOTPass system, and more detailed aspects of usability.”

Lulu Chang
Fascinated by the effects of technology on human interaction, Lulu believes that if her parents can use your new app…
As AI turbocharges digital abuse, UK agencies urge parents to limit who sees kids’ photos online
The National Crime Agency and Internet Watch Foundation are asking parents to tighten privacy settings as AI-generated abuse material rises.
Social Media

Parents who post pictures of their kids online are being told to rethink the habit. The UK's National Crime Agency and the Internet Watch Foundation have issued new guidance urging families to lock down their social media accounts, warning that publicly shared photos are increasingly being pulled and altered by AI tools to create child sexual abuse material.

The two organizations say most parents have no idea this is happening. Criminals no longer need to contact a child directly to generate such material. They can scrape an ordinary photo and run it through widely available nudify apps.

Read more
I used ASUS’ dual-screen laptop as a portable creative station, and my desk PC started collecting dust
The Zenbook Duo might be the creator setup I wanted in college
Computer Hardware, Electronics, Hardware

With laptops, brands are constantly in a balancing act between portability and workspace productivity. The ASUS Zenbook Duo UX8407AA tries to dodge that choice with a design that brings a whole setup in a compact form factor.

I used the Zenbook Duo as a creative machine, mainly with design apps, illustration work, writing, and multitasking. The model I tried runs on Intel’s Core Ultra 7 355, paired with 32GB of memory and a 1TB SSD. That gives it enough horsepower to handle Photoshop and Animate, for sketches and animations, and a lot more without breaking a sweat.

Read more
macOS clipboard app Maccy has a fake out there stealing passwords
PamStealer malware is disguising itself as Maccy to target Mac users
Depicting of the Maccy clipboard app for macOS on a laptop with letters inb the background.

A fake version of Maccy, a popular clipboard manager for macOS, is being used to deliver a newly discovered Mac malware strain called PamStealer. Researchers at Jamf say the malware impersonates the real open-source app, but its actual purpose is to steal data and capture a victim’s login password.

PamStealer arrives as a disk image containing an AppleScript file that impersonates Maccy. Once the user opens that file, macOS launches it in Script Editor, where the on-screen instructions tell them to press Command-R. To someone expecting a normal app installer, that may look like an odd setup step. In reality, that action runs hidden malware code and starts the attack.

Read more