Website Credential Storage and Two-Factor Web Authentication with a Java SIM - Information Security Theory and Practices. Security and Privacy of Pervasive Systems and Smart Devices
Conference Papers Year : 2010

Website Credential Storage and Two-Factor Web Authentication with a Java SIM

Abstract

In this paper two mobile website authentication schemes are proposed. The first enables authentication credentials (username and password) to be stored and retrieved securely from a mobile handset, and requires no changes to existing websites. The second scheme, which may optionally be used with the first, utilises a one-time password and is intended for applications requiring an enhanced level of authentication, e.g. financial services. Both authentication schemes use a Java SIM and ubiquitous mobile phone; with its familiar and convenient form factor and high user acceptance. Both schemes also provide protection against online phishing attacks.
Fichier principal
Vignette du fichier
60330231.pdf (307.22 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01056084 , version 1 (14-08-2014)

Licence

Identifiers

Cite

Jonathan Hart, Konstantinos Markantonakis, Keith Mayes. Website Credential Storage and Two-Factor Web Authentication with a Java SIM. 4th IFIP WG 11.2 International Workshop on Information Security Theory and Practices: Security and Privacy of Pervasive Systems and Smart Devices (WISTP), Apr 2010, Passau, Germany. pp.229-236, ⟨10.1007/978-3-642-12368-9_17⟩. ⟨hal-01056084⟩
89 View
187 Download

Altmetric

Share

More