The most common method used for authentication is Textual passwords. But textual passwords are vulnerable to dictionary attacks, eves dropping, social engineering and shoulder surfing. An alternative technique to textual passwords is graphical passwords. Most of the graphical schemes are vulnerable to shoulder surfing. To address this problem, authentication using session passwords are introduced, where text can be combined with images or colors to generate session passwords for authentication. Session passwords are one time passwords which means they can be used only once and every time a new password is generated.