商业环境中基于问题的用户身份验证

2014 37th International Convention on Information and Communication Technology, Electronics and Microelectronics (MIPRO) Pub Date : 2014-05-26 DOI:10.1109/MIPRO.2014.6859790

K. Skracic, P. Pale, B. Jeren

{"title":"商业环境中基于问题的用户身份验证","authors":"K. Skracic, P. Pale, B. Jeren","doi":"10.1109/MIPRO.2014.6859790","DOIUrl":null,"url":null,"abstract":"The aim of this paper is to analyze question based user authentication methods with regard to their potential use in commercial environments and the limitations they impose. We provide an overview of current work related to question based authentication and describe the difference between static and dynamic questions in user authentication. Additionally, we give an introduction into some common practices used in user authentication in commercial environments. Based on existing research we suggest that only dynamic questions should be used in commercial environments and propose a set of requirements a data source used for creating authentication challenges should meet. Also, we categorize the types of data that can be leveraged for authenticating users.","PeriodicalId":299409,"journal":{"name":"2014 37th International Convention on Information and Communication Technology, Electronics and Microelectronics (MIPRO)","volume":"10 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2014-05-26","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Question based user authentication in commercial environments\",\"authors\":\"K. Skracic, P. Pale, B. Jeren\",\"doi\":\"10.1109/MIPRO.2014.6859790\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The aim of this paper is to analyze question based user authentication methods with regard to their potential use in commercial environments and the limitations they impose. We provide an overview of current work related to question based authentication and describe the difference between static and dynamic questions in user authentication. Additionally, we give an introduction into some common practices used in user authentication in commercial environments. Based on existing research we suggest that only dynamic questions should be used in commercial environments and propose a set of requirements a data source used for creating authentication challenges should meet. Also, we categorize the types of data that can be leveraged for authenticating users.\",\"PeriodicalId\":299409,\"journal\":{\"name\":\"2014 37th International Convention on Information and Communication Technology, Electronics and Microelectronics (MIPRO)\",\"volume\":\"10 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2014-05-26\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2014 37th International Convention on Information and Communication Technology, Electronics and Microelectronics (MIPRO)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/MIPRO.2014.6859790\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2014 37th International Convention on Information and Communication Technology, Electronics and Microelectronics (MIPRO)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/MIPRO.2014.6859790","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

摘要

本文的目的是分析基于问题的用户身份验证方法，以及它们在商业环境中的潜在用途和它们所施加的限制。我们概述了当前与基于问题的身份验证相关的工作，并描述了用户身份验证中静态问题和动态问题的区别。此外，我们还介绍了在商业环境中用于用户身份验证的一些常用实践。根据现有的研究，我们建议在商业环境中只使用动态问题，并提出了用于创建身份验证挑战的数据源应满足的一组要求。此外，我们还对可用于验证用户身份的数据类型进行了分类。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Question based user authentication in commercial environments

The aim of this paper is to analyze question based user authentication methods with regard to their potential use in commercial environments and the limitations they impose. We provide an overview of current work related to question based authentication and describe the difference between static and dynamic questions in user authentication. Additionally, we give an introduction into some common practices used in user authentication in commercial environments. Based on existing research we suggest that only dynamic questions should be used in commercial environments and propose a set of requirements a data source used for creating authentication challenges should meet. Also, we categorize the types of data that can be leveraged for authenticating users.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2014 37th International Convention on Information and Communication Technology, Electronics and Microelectronics (MIPRO)

自引率

0.00%

发文量