A QTE-based solution to keylogger attacks

Chien Wei Hung, Fu Hau Hsu, Shih Jen Chen, Chang Kuo Tso, Yan Ling Hwang, Po Ching Lin, Li Pin Hsu

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

Nowadays keystroke logging is one of the most widespread threats used for password theft. In this paper, rather than detecting existing malware or creating a trusted tunnel in the kernel, we present a different method QTE (Quick Time Events) to protect the password that a user provides for a web page to login to a web service. Installing such solutions in a host only requires limited privileges of related computers. The QTE method utilizes a canvas to cue users when their input will be recorded or ignored by the QTE add-on, which provides a chance for users to obfuscate keyloggers by inserting meaningless letters among the keystrokes of their passwords. QTE can be applied to all websites without any modification of them.

Original languageEnglish
Title of host publicationSECURWARE 2012 - 6th International Conference on Emerging Security Information, Systems and Technologies
Pages62-67
Number of pages6
StatePublished - 2012
Event6th International Conference on Emerging Security Information, Systems and Technologies, SECURWARE 2012 - Rome, Italy
Duration: 19 Aug 201224 Aug 2012

Publication series

NameSECURWARE 2012 - 6th International Conference on Emerging Security Information, Systems and Technologies

Conference

Conference6th International Conference on Emerging Security Information, Systems and Technologies, SECURWARE 2012
Country/TerritoryItaly
CityRome
Period19/08/1224/08/12

Keywords

  • Authentication
  • Computer security
  • Keylogger
  • Privacy

Fingerprint

Dive into the research topics of 'A QTE-based solution to keylogger attacks'. Together they form a unique fingerprint.

Cite this