A framework to strengthen password authentication using mobile devices and browser extensions

The 10th IEEE International Symposium on Signal Processing and Information Technology Pub Date : 2010-12-15 DOI:10.1109/ISSPIT.2010.5711728

P. Shi, Bo Zhu, A. Youssef

引用次数: 1

Abstract

Shoulder-surfing, phishing and keylogging are widely used by attackers to obtain users' sensitive credentials. In this paper, we propose a framework to strengthen password authentication using mobile devices and browser extensions. This approach provides a relatively high resilience against shoulder-surfing, phishing and keylogging attacks while requires no change on the server side. A prototype implementation of the proposed approach and its security analysis are also provided.

查看原文本刊更多论文

一个使用移动设备和浏览器扩展来加强密码认证的框架

攻击者广泛使用肩冲浪、网络钓鱼和键盘记录来获取用户的敏感凭据。在本文中，我们提出了一个使用移动设备和浏览器扩展来加强密码认证的框架。这种方法提供了相对较高的抗肩冲浪、网络钓鱼和键盘记录攻击的弹性，同时不需要在服务器端进行更改。给出了该方法的原型实现及其安全性分析。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

The 10th IEEE International Symposium on Signal Processing and Information Technology

自引率

0.00%

发文量