Password Replacement

Start a Free Trial
Watch the Video
Read the Data Sheet
Read the White Paper
Try the Demo

One-Time Passwords Using Image-Based Authentication

The average Internet user has more than 20 online accounts, each requiring a password. People cannot remember a different strong password for every account, so they choose weak passwords or they use the same password on multiple websites.

Poor password practices threaten security by making it easy for hackers to compromise user accounts. Once an attacker has access to user accounts, the negative repercussions can be ruinous for a business and include legal liability, fines, loss of customers, damage to the company’s brand, the cost of fixing IT security systems and more.

Websites need strong authentication that is easy for users, but very difficult for attackers to compromise.

One-time passwords using images

Confident ImageShield™ allows websites to replace static, text passwords with an intuitive and highly secure, image-based login. It provides strong authentication by creating a one-time password or PIN for each session.

How it works:

1. The first time a user registers with a website or application, they select a few categories they can easily remember – such as dogs, flowers and clocks. There is no need to create a password. 

2. Each time authentication is required the user is presented with a randomly-generated grid of images – the Confident ImageShield.

3. The user identifies the images on the grid that fit their chosen categories and types the corresponding characters to form a one-time password or PIN.

More Secure, Easier to Use

The specific pictures that appear on the grid and their alphanumeric characters are different each time. In this way, Confident ImageShield forms a unique password for each login session. Yet the user only needs to remember a few categories. Seeing the images displayed on the Confident ImageShield help trigger the user’s memory of which categories they originally chose. This is called guided recall.

One-time passwords for authentication provide much stronger security than a static, text password of the user’s choice. There is no risk of the user choosing a weak password or using the same password on another website. Even if the user has keystroke-logging malware installed on their machine, an attacker will not be able to learn the user’s password or use it in the future, because the password is different each time.

For more information, contact us or start a free trial today.