Faces Are the New Secure Passwords

Future Tense
The Citizen's Guide to the Future
June 24 2014 6:45 AM

Faces Are the New Passwords

facelock3

Shutterstock/Getty

This article originally appeared at Science of Us.

One of the nine faces above is familiar to me, but the rest aren't. Can you pick it out? The answer is at the bottom of this post, and I don't like your odds. This grid is a "facelock," an alternative to the password system most websites use, and a study soon to be published in PeerJ suggests that facelocks are a promising method of ensuring online security.

Advertisement

No one likes passwords, after all—they're tricky to remember and require frequent re-dos for security purposes. Facelocks, explain the study authors, could provide a viable alternative by capitalizing on a major strength of humans: We're great at recognizing faces, and particularly at distinguishing familiar from unfamiliar ones.

The study, conducted by researchers at the Universities of York and Glasgow, tested the feasibility of a facelock that blocks access to a given program or device until the user can recognize several familiar faces in a sea of unfamiliar ones. Users selected faces familiar to them, and then both they and hypothetical "attackers" were asked to try to get into their accounts by successfully selecting the right face out of a grid of nine four times in a row.

What's key here is that an effective facelock doesn't ask you to pluck out Kanye West from a bunch of random stock photos — rather, the strength of this sort of system relies on users selecting photos they can easily recognize, but few others can. So it was recommended to the study participants that they choose their favorite "Z-List" celebrities, like famous cellists or skiers (sorry, professional cellists and skiers). Friends and family members wouldn't be a good idea on the off chance one of them tried to crack your e-mail.

This was more of a proof of concept than a massive study of a near-finished product, but still, the study showed that a system like this could potentially work well. On the usability side, 97.5 percent of users could get into their hypothetical account a week after selecting faces for a facelock system, and a full year later that number had only dropped to 86 percent (think of what your success rate would be for a password you didn't use for a year). As for security, neither strangers (0.9 percent) nor close friends and family members of the person who chose the photos (6.6 percent) had much luck cracking facelocks, and those numbers dropped even further when it came to succeeding on the first attempt.

As for the above, the handsome gent in the middle of the right column is legendary-to-Patriots-fans wide receiver Troy Brown. Maybe he's a bit too famous for use as a facelock face, but given all the exciting moments he provided me and other New Englanders over the years, I'd trust him with my data any day.

Future Tense is a partnership of SlateNew America, and Arizona State University.

Jesse Singal is a senior editor at NYMag.com, where he edits the social-science blog Science of Us. Follow him on Twitter at @jessesingal.  

TODAY IN SLATE

Technocracy

Forget Oculus Rift

This $25 cardboard box turns your phone into an incredibly fun virtual reality experience.

The Congressional Republican Digging Through Scientists’ Grant Proposals

Renée Zellweger’s New Face Is Too Real

Sleater-Kinney Was Once America’s Best Rock Band

Can it be again?

Whole Foods Is Desperate for Customers to Feel Warm and Fuzzy Again

The XX Factor

I’m 25. I Have $250.03.

My doctors want me to freeze my eggs.

The XX Factor
Oct. 20 2014 6:17 PM I’m 25. I Have $250.03. My doctors want me to freeze my eggs.
Politics

Smash and Grab

Will competitive Senate contests in Kansas and South Dakota lead to more late-breaking races in future elections?

George Tiller’s Murderer Threatens Another Abortion Provider, Claims Free Speech

These Companies in Japan Are More Than 1,000 Years Old

  News & Politics
The World
Oct. 21 2014 3:13 PM Why Countries Make Human Rights Pledges They Have No Intention of Honoring
  Business
Moneybox
Oct. 21 2014 5:57 PM Soda and Fries Have Lost Their Charm for Both Consumers and Investors
  Life
The Vault
Oct. 21 2014 2:23 PM A Data-Packed Map of American Immigration in 1903
  Double X
The XX Factor
Oct. 21 2014 3:03 PM Renée Zellweger’s New Face Is Too Real
  Slate Plus
Behind the Scenes
Oct. 21 2014 1:02 PM Where Are Slate Plus Members From? This Weird Cartogram Explains. A weird-looking cartogram of Slate Plus memberships by state.
  Arts
Brow Beat
Oct. 21 2014 1:47 PM The Best Way to Fry an Egg
  Technology
Technology
Oct. 21 2014 5:38 PM Justified Paranoia Citizenfour offers a look into the mind of Edward Snowden.
  Health & Science
Climate Desk
Oct. 21 2014 11:53 AM Taking Research for Granted Texas Republican Lamar Smith continues his crusade against independence in science.
  Sports
Sports Nut
Oct. 20 2014 5:09 PM Keepaway, on Three. Ready—Break! On his record-breaking touchdown pass, Peyton Manning couldn’t even leave the celebration to chance.