Skip to main content
CMAPS: A Chess-Based Multi-Facet Password Scheme for Mobile Devices
IEEE Access
  • Ye Zhu, Cleveland State University
  • Jonathan Gurary, John Carroll University
  • George Corser, Saginaw Valley State University
  • Jared Oluoch, University of Toledo
  • Nahed Alnahash, Oakland University
  • Huirong Fu, Oakland University
  • Junhua Tang, Shanghai Jiao Tong University
Document Type
Publication Date

It has long been recognized, by both security researchers and human-computer interaction researchers, that no silver bullet for authentication exists to achieve security, usability, and memorability. Aiming to achieve the goals, we propose a Multi-fAcet Password Scheme (MAPS) for mobile authentication. MAPS fuses information from multiple facets to form a password, allowing MAPS to enlarge the password space and improve memorability by reducing memory interference, which impairs memory performance according to psychology interference theory. The information fusion in MAPS can increase usability, as fewer input gestures are required for passwords of the same security strength. Based on the idea of MAPS, we implement a Chess-based MAPS (CMAPS) for Android systems. Only two and six gestures are required for CMAPS to generate passwords with better security strength than 4-digit PINs and 8-character alphanumeric passwords, respectively. Our user studies show that CMAPS can achieve high recall rates while exceeding the security strength of standard 8-character alphanumeric passwords used for secure applications.


This work was supported in part by the Faculty Development Award from Cleveland State University and in part by the U.S. National Science Foundation under Grant CNS-1338105, Grant CNS-1343141, Grant CNS-1460897, Grant DGE-1623713, and Grant DGE-1821775.

Publisher's PDF
Citation Information
Ye Zhu, Jonathan Gurary, George Corser, Jared Oluoch, et al.. "CMAPS: A Chess-Based Multi-Facet Password Scheme for Mobile Devices" IEEE Access Vol. 6 (2018) p. 54795 - 54810
Available at: