For example, it is not resistant to shoulder-surfing attacks , Therefore, if authentication entry is covertly observed even once, the password can be stolen.
While shoulder-surfing attack resistant authentication methods have been developed with stronger resistance than other existing authentication methods [7, 8].
To this method, we propose adding a shift function as a way to increase shoulder-surfing attack resistance.
In this section, we propose an authentication method that is resistant to both shoulder-surfing and brute force attacks.
We then applied the Secret Tap and STDS methods to mobile terminals equipped with the Android OS in order to evaluate their resistance to shoulder-surfing attacks.
The proposed authentication methods are resistant to shoulder-surfing attacks because, when the proposed shift function is used, the user does not tap the registry icon directly and the registry icons are only displayed once.
Thus, it can be said that the proposed methods are sufficiently resistant to shoulder-surfing attacks.