Enhancing CardSpace Authentication Using a Mobile Device - Data and Applications Security and Privacy XXV
Conference Papers Year : 2011

Enhancing CardSpace Authentication Using a Mobile Device

Haitham S. Al-Sinani
  • Function : Author
  • PersonId : 1016188
Goldsmiths, University of London
Chris J. Mitchell
  • Function : Author
Goldsmiths, University of London

Abstract

In this paper we propose a simple, novel scheme for using a mobile device to enhance CardSpace authentication. During the process of user authentication on a PC using CardSpace, a random and short-lived one-time password is sent to the user’s mobile device; this must then be entered into the PC by the user when prompted. The scheme does not require any changes to login servers, the CardSpace identity selector, or to the mobile device itself. We specify the scheme and give details of a proof-of-concept prototype. Security and operational analyses are also provided.

Domains

Computer Science [cs]
Fichier principal
Vignette du fichier
978-3-642-22348-8_16_Chapter.pdf (262.33 Ko) Télécharger le fichier
Origin Files produced by the author(s)

Hal Ifip  : Connect in order to contact the contributor

https://inria.hal.science/hal-01586573

Submitted on : Wednesday, September 13, 2017-8:55:45 AM

Last modification on : Tuesday, July 13, 2021-4:18:04 PM

Long-term archiving on : Thursday, December 14, 2017-12:29:03 PM

Download

Dates and versions

hal-01586573 , version 1 (13-09-2017)

Licence

Attribution

Identifiers

Cite

Haitham S. Al-Sinani, Chris J. Mitchell. Enhancing CardSpace Authentication Using a Mobile Device. 23th Data and Applications Security (DBSec), Jul 2011, Richmond, VA, United States. pp.201-216, ⟨10.1007/978-3-642-22348-8_16⟩. ⟨hal-01586573⟩

Export

BibTeX XML-TEI Dublin Core DC Terms EndNote DataCite

Collections

IFIP-LNCS IFIP IFIP-TC IFIP-WG IFIP-TC11 IFIP-WG11-3 IFIP-DBSEC IFIP-LNCS-6818
62 View
104 Download

Altmetric

Share

More