Bezpieczne uwierzytalnianie z wykorzystaniem urządzeń mobilnych

• Autorzy: Łąka P. , Flaga D. , Mazurczyk W.

Identyfikatory

DOI

10.15199/59.2016.8-9.10

Warianty tytułu

EN

Secure authentication using mobile devices

• Konferencja: XXXII Krajowe Sympozjum Telekomunikacji i Teleinformatyki (XXXII ; 26-28.09.2016 ; Gliwice, Polska)
• Języki publikacji: PL

Abstrakty

PL

Coraz więcej usług dostarczanych jest użytkownikom przez Internet. Aplikacje webowe umożliwiają robienie zakupów online, korzystanie z bakowości elektronicznej czy z usług e-zdrowia. Dodatkowym udogodnieniem jest fakt, iż owe aplikacje obsługują urządzenia mobilne. Głównym problemem jest jednak potwierdzanie ludzkiej tożsamości. W niniejszej pracy zaprezentowano sposób na zarówno bezpieczny jak i przyjazny użytkownikowi sposób uwierzytelniania przy użyciu urządzeń mobilnych z systemem Android. Dodatkowo dokonano analizy bezpieczeństwa zaproponowanego rozwiązania.

EN

Web technologies and applications are currently supplying more and more services which attract users to eshopping malls, managing finances (e-banking) or e-health.An additional advantage is the fact that these applications are supported on mobile devices. The main challenge, however, is the verification of human identity. In this paper, both secure and user-friendly way of authentication using Android mobile devices is proposed. In addition, the security analysis of this solution is preformed.

Słowa kluczowe

PL

aplikacja mobilna; bezpieczeństwo; HCI; uwierzytelnienie

EN

authentication; HCI; mobile application; security

• Wydawca: Wydawnictwo SIGMA-NOT
• Czasopismo: Przegląd Telekomunikacyjny + Wiadomości Telekomunikacyjne
• Rocznik: 2016
• Tom: nr 8-9
• Strony: 761--764, CD
• Opis fizyczny: Bibliogr. 15 poz., rys.

Twórcy

autor

Łąka P.

• Instytut Telekomunikacji, Politechnika Warszawska, ul. Nowowiejska 15/19, 00-665 Warszawa

autor

Flaga D.

• Instytut Telekomunikacji, Politechnika Warszawska, ul. Nowowiejska 15/19, 00-665 Warszawa

autor

Mazurczyk W.

• Instytut Telekomunikacji, Politechnika Warszawska, ul. Nowowiejska 15/19, 00-665 Warszawa

Bibliografia

• [1] Jorge Aguila Vila, Aguila Serna-Olvera, Luis Fernandez, Manel Medina, and Andreas Sfakianakis, "A Professional View on eBanking Authentication: Challenges and Recommendations," in Information Assurance and Security (IAS), 2013 9th International Conference on, Gammarth, 2013, pp. 43 - 48.
• [2] Christopher Pavlovski, Claudia Warwar, Brett Paskin, and Gary Chan, "Unified framework for multifactor authentication," in Telecommunications (ICT), 2015 22nd International Conference on, Sydney, 2015, pp. 209 - 213.
• [3] Minglei Shu, Chengxiang Tan, and Haihang Wang, "Mobile Authentication Scheme Using SMS," in Services Science, Management and Engineering, 2009. SSME '09. IITA International Conference on, Zhangjiajie, 2009, pp. 161 - 164.
• [4] Do van Thanh, Ivar Jorstad, Tore Jonvik, and Do van Thuan, "Strong authentication with mobile phone as security token," in 2009 IEEE 6th International Conference on Mobile Adhoc and Sensor Systems, Macau, 2009, pp. 777 - 782.
• [5] Nack Hyun Kim, Young Sil Lee, Hyotaek Lim, HeungKuk Jo, and Hoon Jae Lee, "Online banking authentication system using mobile-OTP with QRcode," in Computer Sciences and Convergence Information Technology (ICCIT), 2010 5th International Conference on, Seoul, 2010, pp. 644 - 648.
• [6] Xing Fang and Justin Zhan, "Online Banking Authentication Using Mobile Phones," in 2010 5th International Conference on Future Information Technology, Busan, 2010, pp. 1 - 5.
• [7] K. Thamizhchelvy and G. Geetha, "E-Banking Security: Mitigating Online Threats Using Message Authentication Image (MAI) Algorithm," in Computing Sciences (ICCS), 2012 International Conference on, Phagwara, 2012, pp. 276 - 280.
• [8] Cătălin Lupu, Vasile-Gheorghiţă Găitan, and Valeriu Lupu, "Security enhancement of internet banking applications by using multimodal biometrics," in Applied Machine Intelligence and Informatics (SAMI), 2015 IEEE 13th International Symposium on, Herl'any, 2015, pp. 47 - 52.
• [9] Farhana Javed Zareen and Suraiya Jabin, "Authentic mobile-biometric signature verification system," IET Biometrics (Tom:5 , Wydanie: 1 ), pp. 13 - 19, luty 2016.
• [10] Cătălin Lupu, Vasile-Gheorghiţă Găitan, and Valeriu Lupu, "Fingerprints used for security enhancement of online banking authentication process," in Electronics, Computers and Artificial Intelligence (ECAI), 2015 7th International Conference on, Bucharest, 2015, pp. 217 - 220.
• [11] M. Abo-Zahhad, Sabah M. Ahmed, and Sherif N. Abbas, "A new biometric authentication system using heart sounds based on wavelet packet features," in 2015 IEEE International Conference on Electronics, Circuits, and Systems (ICECS), Cairo, 2015, pp. 17 - 20.
• [12] Hossein Javidnia, Adrian Ungureanu, and Peter Corcoran, "Palm-print recognition for authentication on smartphones," in 2015 IEEE International Symposium on Technology and Society (ISTAS), Dublin, 2015 , pp. 1 - 5.
• [13] Maha M. Althobaiti and Pam Mayhew, "Usable Security of Authentication Process New Approach and Practical Assessment," in 2015 10th International Conference for Internet Technology and Secured Transactions (ICITST), London, 2015, pp. 179 - 180.
• [14] Sant Kumar Choubey and Arpit Agarwal, "Improving banking authentication using hybrid cryptographic technique," in Computer, Communication and Control (IC4), 2015 International Conference on, Indore, 2015, pp. 1 - 7.
• [15] Mahmoud Musa Mohammed and Muna Elsadig, "A multi-layer of multi factors authentication model for online banking services," in Computing, Electrical and Electronics Engineering (ICCEEE), 2013 International Conference on, Khartoum, 2013, pp. 220 - 224.