Design and implementation of multi factor mechanism for secure authentication system
A secure network depends in part on user authentication and regrettably the authentication systems currently in use are not completely safe. However, the user is not the only party that needs to be authenticated to ensure the security of transactions on the Internet. Existing OTP mechanism cannot gu...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
IJCSIS
2013
|
| Online Access: | http://psasir.upm.edu.my/id/eprint/30636/1/Design%20and%20implementation%20of%20multi%20factor%20mechanism%20for%20secure%20authentication%20system.pdf http://psasir.upm.edu.my/id/eprint/30636/ https://sites.google.com/site/ijcsis/vol-11-no-7-jul-2013 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| id |
my.upm.eprints.30636 |
|---|---|
| record_format |
eprints |
| spelling |
my.upm.eprints.306362016-09-14T04:23:40Z http://psasir.upm.edu.my/id/eprint/30636/ Design and implementation of multi factor mechanism for secure authentication system Hussein, Khalid Waleed Mohd Sani, Nor Fazlida Mahmod, Ramlan Abdullah @ Selimun, Mohd Taufik A secure network depends in part on user authentication and regrettably the authentication systems currently in use are not completely safe. However, the user is not the only party that needs to be authenticated to ensure the security of transactions on the Internet. Existing OTP mechanism cannot guarantee reuse of user's account by an adversary, re-use stolen user's device which is used in the process of authentication, and non-repudiation. This paper proposed mechanism of multi factor for secure electronic authentication. It intends to authenticate both of user and mobile device and guarantee non-repudiation, integrity of OTP from obtaining it by an adversary. The proposal can guarantee the user’s credentials by ensuring the user’s authenticity of identity and checking that the mobile device is in the right hands before sending the OTP to the user. This would require each user having a unique phone number and a unique mobile device (unique International Mobile Equipment Identity (IMEI)), in addition to an ID card number. By leveraging existing communication infrastructures, the mechanism would be able to guarantee the safety of electronic authentication, and to confirm that it demonstrates excellence in non-repudiation, authenticate user and mobile device which are used in the process of authentication, certification strength and also in comparison and analysis through experimenting with existing OTP mechanisms. IJCSIS 2013 Article PeerReviewed application/pdf en http://psasir.upm.edu.my/id/eprint/30636/1/Design%20and%20implementation%20of%20multi%20factor%20mechanism%20for%20secure%20authentication%20system.pdf Hussein, Khalid Waleed and Mohd Sani, Nor Fazlida and Mahmod, Ramlan and Abdullah @ Selimun, Mohd Taufik (2013) Design and implementation of multi factor mechanism for secure authentication system. International Journal of Computer Science and Information Security, 11 (7). pp. 31-37. ISSN 1947-5500 https://sites.google.com/site/ijcsis/vol-11-no-7-jul-2013 |
| institution |
Universiti Putra Malaysia |
| building |
UPM Library |
| collection |
Institutional Repository |
| continent |
Asia |
| country |
Malaysia |
| content_provider |
Universiti Putra Malaysia |
| content_source |
UPM Institutional Repository |
| url_provider |
http://psasir.upm.edu.my/ |
| language |
English |
| description |
A secure network depends in part on user authentication and regrettably the authentication systems currently in use are not completely safe. However, the user is not the only party that needs to be authenticated to ensure the security of transactions on the Internet. Existing OTP mechanism cannot guarantee reuse of user's account by an adversary, re-use stolen user's device which is used in the process of authentication, and non-repudiation. This paper proposed mechanism of multi factor for secure electronic authentication. It intends to authenticate both of user and mobile device and guarantee non-repudiation, integrity of OTP from obtaining it by an adversary. The proposal can guarantee the user’s credentials by ensuring the user’s authenticity of identity and checking that the mobile device is in the right hands before sending the OTP to the user. This would require each user having a unique phone number and a unique mobile device (unique International Mobile Equipment Identity (IMEI)), in addition to an ID card number. By leveraging existing communication infrastructures, the mechanism would be able to guarantee the safety of electronic authentication, and to confirm that it demonstrates excellence in non-repudiation, authenticate user and mobile device which are used in the process of authentication, certification strength and also in comparison and analysis through experimenting with existing OTP mechanisms. |
| format |
Article |
| author |
Hussein, Khalid Waleed Mohd Sani, Nor Fazlida Mahmod, Ramlan Abdullah @ Selimun, Mohd Taufik |
| spellingShingle |
Hussein, Khalid Waleed Mohd Sani, Nor Fazlida Mahmod, Ramlan Abdullah @ Selimun, Mohd Taufik Design and implementation of multi factor mechanism for secure authentication system |
| author_facet |
Hussein, Khalid Waleed Mohd Sani, Nor Fazlida Mahmod, Ramlan Abdullah @ Selimun, Mohd Taufik |
| author_sort |
Hussein, Khalid Waleed |
| title |
Design and implementation of multi factor mechanism for secure authentication system |
| title_short |
Design and implementation of multi factor mechanism for secure authentication system |
| title_full |
Design and implementation of multi factor mechanism for secure authentication system |
| title_fullStr |
Design and implementation of multi factor mechanism for secure authentication system |
| title_full_unstemmed |
Design and implementation of multi factor mechanism for secure authentication system |
| title_sort |
design and implementation of multi factor mechanism for secure authentication system |
| publisher |
IJCSIS |
| publishDate |
2013 |
| url |
http://psasir.upm.edu.my/id/eprint/30636/1/Design%20and%20implementation%20of%20multi%20factor%20mechanism%20for%20secure%20authentication%20system.pdf http://psasir.upm.edu.my/id/eprint/30636/ https://sites.google.com/site/ijcsis/vol-11-no-7-jul-2013 |
| _version_ |
1643830118635798528 |
| score |
13.149126 |