Regio A. Michelin, A. Zorzo, M. B. Campos, C. V. Neu, Alex M. S. Orozco
{"title":"智能手机作为网络认证的生物识别服务","authors":"Regio A. Michelin, A. Zorzo, M. B. Campos, C. V. Neu, Alex M. S. Orozco","doi":"10.1109/ICITST.2016.7856740","DOIUrl":null,"url":null,"abstract":"Authentication is a crucial solution to be considered for securing an application or user's personal data. It is a mechanism that plays a role to allow only the rightful user to access an application and the corresponding data, without allowing any kind of impersonation. To avoid this impersonation, biometric mechanisms have been used to read some biological characteristic from the user. However, the extra hardware needed for reading the biometric feature is usually a problem. Besides, in some scenarios, this will definitely avoid its adoption. Nonetheless, nowadays, this problem may be reduced since almost every adult person possesses a smartphone, which contains several sensors that can be used to read biometric information from a user. This work proposes a mechanism to allow a smartphone to act as a biometric reader for different levels of task/data available in a web application. In order to bind a smartphone to a web application, we use QR-Code sent from a web server to a web client, which will have to be read by a smartphone and then be sent back to the web server, so the web server knows that the actual user is close to the web client. This paper also provides a discussion on how to evaluate the usability of the proposed mechanism.","PeriodicalId":258740,"journal":{"name":"2016 11th International Conference for Internet Technology and Secured Transactions (ICITST)","volume":"14 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"6","resultStr":"{\"title\":\"Smartphone as a biometric service for web authentication\",\"authors\":\"Regio A. Michelin, A. Zorzo, M. B. Campos, C. V. Neu, Alex M. S. Orozco\",\"doi\":\"10.1109/ICITST.2016.7856740\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Authentication is a crucial solution to be considered for securing an application or user's personal data. It is a mechanism that plays a role to allow only the rightful user to access an application and the corresponding data, without allowing any kind of impersonation. To avoid this impersonation, biometric mechanisms have been used to read some biological characteristic from the user. However, the extra hardware needed for reading the biometric feature is usually a problem. Besides, in some scenarios, this will definitely avoid its adoption. Nonetheless, nowadays, this problem may be reduced since almost every adult person possesses a smartphone, which contains several sensors that can be used to read biometric information from a user. This work proposes a mechanism to allow a smartphone to act as a biometric reader for different levels of task/data available in a web application. In order to bind a smartphone to a web application, we use QR-Code sent from a web server to a web client, which will have to be read by a smartphone and then be sent back to the web server, so the web server knows that the actual user is close to the web client. This paper also provides a discussion on how to evaluate the usability of the proposed mechanism.\",\"PeriodicalId\":258740,\"journal\":{\"name\":\"2016 11th International Conference for Internet Technology and Secured Transactions (ICITST)\",\"volume\":\"14 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-12-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"6\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 11th International Conference for Internet Technology and Secured Transactions (ICITST)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICITST.2016.7856740\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 11th International Conference for Internet Technology and Secured Transactions (ICITST)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICITST.2016.7856740","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Smartphone as a biometric service for web authentication
Authentication is a crucial solution to be considered for securing an application or user's personal data. It is a mechanism that plays a role to allow only the rightful user to access an application and the corresponding data, without allowing any kind of impersonation. To avoid this impersonation, biometric mechanisms have been used to read some biological characteristic from the user. However, the extra hardware needed for reading the biometric feature is usually a problem. Besides, in some scenarios, this will definitely avoid its adoption. Nonetheless, nowadays, this problem may be reduced since almost every adult person possesses a smartphone, which contains several sensors that can be used to read biometric information from a user. This work proposes a mechanism to allow a smartphone to act as a biometric reader for different levels of task/data available in a web application. In order to bind a smartphone to a web application, we use QR-Code sent from a web server to a web client, which will have to be read by a smartphone and then be sent back to the web server, so the web server knows that the actual user is close to the web client. This paper also provides a discussion on how to evaluate the usability of the proposed mechanism.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
