User authentication method and apparatus
First Claim
1. A user authentication method that authenticates a user based on a graphical password input by the user, the user authentication method comprising:
- determining whether the graphical password has been input;
determining whether to authenticate the user depending on whether the extent to which a location of the input graphical password matches with a reference location of a registered graphical password is within an authentication margin for a location of any input graphical password with respect to the reference location of the registered graphical password;
storing a graphical password input history if the user is not authenticated;
determining whether there has been an intrusion by referring to the graphical password input history; and
reducing the authentication margin if determined that there has been an intrusion,wherein the graphical password comprises displaying a predetermined graphical image and requiring the user to select predetermined areas of the graphical image in a predetermined sequence.
1 Assignment
0 Petitions
Accused Products
Abstract
A user authentication method includes varying a threshold value for human body recognition depending on the extent to which an input graphical password matches with a registered graphical password and determining whether to authenticate a user or not based on a result of comparing the user'"'"'s human body recognition information with registered human body recognition information. Thus, it is possible to improve convenience, reliability, and security of user authentication based on a graphical password in a device, such as a PDA or other portable electronic device, not having a key manipulation unit. In addition, a biometrics unit that used to provide authentication functions and to carry out user authentication may be improved by lowering both FAR and FRR by variably setting a threshold value for biometrics depending on the result of user authentication using a graphical password.
29 Citations
53 Claims
-
1. A user authentication method that authenticates a user based on a graphical password input by the user, the user authentication method comprising:
-
determining whether the graphical password has been input; determining whether to authenticate the user depending on whether the extent to which a location of the input graphical password matches with a reference location of a registered graphical password is within an authentication margin for a location of any input graphical password with respect to the reference location of the registered graphical password; storing a graphical password input history if the user is not authenticated; determining whether there has been an intrusion by referring to the graphical password input history; and reducing the authentication margin if determined that there has been an intrusion, wherein the graphical password comprises displaying a predetermined graphical image and requiring the user to select predetermined areas of the graphical image in a predetermined sequence. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A user authentication method that authenticates a user based on biometrics information and a graphical password input by the user, the user authentication method comprising:
-
determining whether the graphical password has been input; variably setting a threshold value of biometrics depending on the extent to which the input graphical password matches with a registered graphical password; and authenticating the user based on a result of comparing the user'"'"'s biometrics information with registered biometrics using the set threshold biometrics value, wherein the graphical password comprises displaying a predetermined graphical image and requiring the user to select predetermined areas of the graphical image in a predetermined sequence. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
-
-
25. A user authentication apparatus that authenticates a user based on a graphical password input by the user, the user authentication apparatus comprising:
-
a graphical password input unit which determines whether the graphical password has been input; a control unit which authenticates the user depending on whether the extent to which a location of the input graphical password matches with a reference location of a registered graphical password is within an authentication margin for a location of any input graphical password with respect to the reference location of the registered graphical password; a storage unit which stores the registered graphical password and stores a graphical password input history if the user is not authenticated; and a graphical password input history analysis unit which determines whether an intrusion occurred by referring to the graphical password input history, wherein the control unit reduces the authentication margin of the location of any input graphical password with respect to the reference location of the registered graphical password if the graphical password input history analysis unit determines that there has been an intrusion, and wherein the graphical password comprises a predetermined graphical image on a display where the user selects predetermined areas of the graphical image in a predetermined sequence. - View Dependent Claims (26, 27, 28, 29, 30)
-
-
31. A user authentication apparatus that authenticates a user based on biometrics information and a graphical password input by the user, the user authentication apparatus comprising:
-
a graphical password input unit which determines whether the graphical password has been input; a storage unit which stores registered graphical password and registered biometrics information; a control unit which variably sets a threshold value of biometrics depending on the extent to which the input graphical password matches with the registered graphical password; and a biometrics unit which authenticates the user based on a result of comparing the user'"'"'s biometrics information input from the outside with registered biometrics, wherein the graphical password comprises a predetermined graphical image on a display where the user selects predetermined areas of the graphical image in a predetermined sequence. - View Dependent Claims (32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46)
-
-
47. A user authentication method, comprising:
-
comparing an input graphical password to a registered graphical password and outputting a valid result when the input graphical password is within a predetermined proximity window of the registered graphical password and outputting an invalid result when the input graphical password is outside the predetermined proximity window of the registered graphical password, wherein the user is authenticated when the valid result is output; and adjusting the predetermined proximity window, wherein the predetermined proximity window is decreased when the invalid result is output, wherein the graphical password comprises displaying a predetermined graphical image and requiring the user to select predetermined areas of the graphical image in a predetermined sequence. - View Dependent Claims (48, 49, 50, 51)
-
-
52. A user authentication apparatus, comprising:
-
a graphical password input unit which receives a graphical password input by a user, wherein a key manipulation unit is not used to input the graphical password; a storage unit which stores registered graphical password and registered biometrics information corresponding to authorized users; a control unit which variably sets a threshold biometrics value depending on the degree to which the input graphical password is proximate to the registered graphical password; and a biometrics unit which reads the user'"'"'s biometrics information and authenticates the user based on a result of comparing the user'"'"'s biometrics information with the registered biometrics using the set threshold biometrics value, wherein the graphical password comprises a predetermined graphical image on a display where the user selects predetermined areas of the graphical image in a predetermined sequence. - View Dependent Claims (53)
-
Specification