drawing

Asked Jan 09 '20 at 15:20

Active Jan 09 '20 at 15:24

Viewed 39 times

I remember a security measure I've seen on a few sites in the past against phishing, but I don't know what it's called. When the user logs in, or just inputs their username, the site shows some kind of secret word / phrase / drawing. That word / phrase / drawing is something the user always sees, so it's proof for them that they're talking to the real site.

I know that American Express uses it, and I've seen a few other sites in the past use it too.

Does anyone know what it's called?

edited Jan 09 '20 at 15:24

schroeder

123,438
55
284
319

asked Jan 09 '20 at 15:20

Ram Rachum

1,998
2
17
20

I think it's simply a "shared secret". – schroeder Jan 09 '20 at 15:24
1

I would refer to this answer [here](https://security.stackexchange.com/questions/26332/what-is-this-authentication-method-approach-called?rq=1): https://security.stackexchange.com/questions/26332/what-is-this-authentication-method-approach-called?rq=1 – 2nafish Jan 09 '20 at 16:06
1

Does this answer your question? [What is this authentication method/approach called?](https://security.stackexchange.com/questions/26332/what-is-this-authentication-method-approach-called) – Fire Quacker Jan 09 '20 at 17:56

Name of security measure that shows user a personal word / phrase / drawing

0 Answers0