A Framework for experience based user authentication technique for minimizing risk of brute-force attacks

Authentication is the process of verifying somebody or something about who he claim he is. The current methods have some drawbacks, which is high cost for special tools, high maintenances, low reliability, lost or broken by user’s poor handling and needs for special expertise in operating the system...

Full description

Saved in:
Bibliographic Details
Main Authors: Mohamad, A.I., Mohamed, M.A., Makhtar, M., Mamat, M., Jamil, N., Din, M.M.
Format: Article
Language:English
Published: 2020
Online Access:http://dspace.uniten.edu.my/jspui/handle/123456789/13160
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Authentication is the process of verifying somebody or something about who he claim he is. The current methods have some drawbacks, which is high cost for special tools, high maintenances, low reliability, lost or broken by user’s poor handling and needs for special expertise in operating the system. In addition, brute force attack has been used against the authentication system by using special software readily available. To address this issue, we proposed an experience-based authentication system, which makes use of user experience as a password during the verification process. In this study, we choose a list of mountains climbed by a user in combination with the year of visit as a password. The system consists of two parts, sign up and sign in. User registration is done during the sign up, whereas user authentication is carried out during the sign in process. Given the number of mountains around the world that is nearly a million in total, and by allowing user to have any combination of mountain, the risk of brute force attack can be minimize significantly. The ability of this system that can withstand such an attack from the outside could increase the current standard security level. © BEIESP.