A new look for passwords
Sunday 22 October 1995
The system, developed by Visage, a Welsh private company, relies on humans' innate ability to recognise familiar faces within a fraction of a second. Yet as Hugh Davies, its chairman, points out: "You can't describe in words what is different about one face from another. But you can learn to recognise a previously unknown face in a few minutes, and that will stick for years."
The company has just been awarded British patents, and is applying for patents internationally. It is also talking to large software companies, including Novell and IBM, who are interested in incorporating the system into their products.
But Mr Davies is bitter that British venture capital companies have not backed the project, which has been kept going by a combination of awards from the Welsh Office and money from a wealthy individual, who has made repeated investments in return for 24 per cent of the equity.
"I think the British venture capital industry is one of those mythical creatures, like the Federation of Greek Islands' Master Plumbers," Mr Davies says.
Visage works by replacing the strings of letters and numbers used in modern, high-security passwords to defeat hackers with thumbnail pictures of faces. The average computer user has to hold six strings such as "orI4d3" in mind. But these are easily forgotten because the brain is not adapted to remembering them.
However, the brain is excellent at remembering human faces. To use the Visage system, the user first chooses a set of faces - typically three - from a given range of about 200 unknown individuals, and practises spotting them in a grid with six others. After five minutes' practice, almost anyone can "fix" their chosen faces.
In the working system, the faces are offered for less than a second in random positions in a grid on a computer screen, and the user must key in their positions. Only the intended user will spot the faces. Extra security can be generated by enlarging the grid and repeating this phase two or three times.
Security levels are kept high by not using famous faces or those of the user's family. GCHQ's tests of the system have all been positive, says Mr Davies. "We have been told by them that it is the single biggest advance in security since the invention of the password itself." The Home Office is understood to be interested in the system as an access control system.
At Charterhouse merchant bank, the system has been used for some time. "We never get any calls with people forgetting their passwords," says Neil Hare-Brown, the security manager. "Once they've learned this, you never hear from them again."
- 1 Half of young women unable to ‘locate vagina’ and 65% find it difficult to say the word
- 2 Perez Hilton apologises for Jennifer Lawrence naked photo leak
- 3 A teacher speaks out: 'I'm effectively being forced out of a career that I wanted to love'
- 4 Mexican woman becomes world’s 'oldest person' at 127
- 5 Jennifer Lawrence 'naked sex video' will be leaked threatens 4Chan celebrity photo hacker
Rotherham child sex abuse scandal: Labour Home Office to be probed over what Tony Blair's government knew - and when
What do immigrants really think of Britain? Polish immigrant's Reddit post goes viral
Ashya King: Parents of five-year-old boy refused permission to visit him in hospital and denied bail at Spanish court
With Douglas Carswell joining Ukip, my party has taken another giant step forward
When elitism grips the top of British society to this extent, there is only one answer: abolish private schools
Ukip Douglas Carswell defection: Tory MP jumps ship to join Nigel Farage
iJobs Money & Business
£40000 - £50000 per annum + benefits+bonus+package: Harrington Starr: SQL Impl...
£85000 per annum: Harrington Starr: Head of IT (Windows, Server, VMware, SAN, ...
£40000 - £50000 per annum: Harrington Starr: You will not be expected to hav...
£500 per day: Harrington Starr: SQL DBA/Developer SQL, C#, VBA, Data Warehousi...