Browse Prior Art Database

CAPTCHA integrated Knowledge Based Authentication to provide stronger and easier authentication

IP.com Disclosure Number: IPCOM000174603D
Original Publication Date: 2008-Sep-17
Included in the Prior Art Database: 2008-Sep-17
Document File: 3 page(s) / 154K

Publishing Venue

IBM

Abstract

Title : CAPTCHA integrated Knowledge Based Authentication to provide stronger and easier authentication

This text was extracted from a PDF file.
At least one non-text object (such as an image or picture) has been suppressed.
This is the abbreviated version, containing approximately 53% of the total text.

Page 1 of 3

CAPTCHA integrated Knowledge Based Authentication to provide stronger and easier authentication

Authors :- Hussaina N Begum, Jyoti B Tenginakai

The idea disclosed provides a stronger, easier authentication, which can resist computer based attacks as well. This is achieved by coming up with a new two factor authentication method from two different mechanisms which were never used as authentication methods.

KBA is used as a retrieval system to get the passwords of the users who forger their password, by asking them a set of knowledge based questions which only the user can answer. Based on the information provided by the user at the time of registration, it allows any authentication system to query users to verify their identity.

CAPTCHA (Completely Automated Turing Test to tell Computers and Humans apart) is a method to differentiate computers from humans by generating some tests, which humans can

pass but not computers.

The idea proposed, will combine the advantages of the above two methods which can be used to come up with another factor of authentication.

Advantages of this idea

1. This solution can be easily integrated into the existing authentication systems (like

password/PIN) as second factor authentication thereby strengthening the authentication system

2.

combines it within.
3. This method will be easier from user perspective as it queries the users about the information he/she can easily remember.

Find below how CPATCHA and KBA can be combined and used as another (second) factor of authentication:

User will be asked few secret questions at the time of creating the userID and password. For eg: What is your favorite color? (COLOR):

What is your Date of Birth? (DOB):

What is your place of Birth? (POB):

User will answer the above questions say as follows: White
Kadapa
Gadag

This information collected from the user will be stored in the database. The system should generate the short forms for the above questions asked to the user and should be communicated to the user as well. (send them to...