基于Web的移动应用程序OPASS认证方案安全性分析

2013 International Conference on Emerging Trends in VLSI, Embedded System, Nano Electronics and Telecommunication System (ICEVENT) Pub Date : 2013-04-11 DOI:10.1109/ICEVENT.2013.6496552

M. Rama, S. Raja

{"title":"基于Web的移动应用程序OPASS认证方案安全性分析","authors":"M. Rama, S. Raja","doi":"10.1109/ICEVENT.2013.6496552","DOIUrl":null,"url":null,"abstract":"Graphical password, text password are authentication of users on websites because of its simplicity and easy. User's passwords are easy to hack by using different malicious programs and threats. First, Users select easy to remember password because nowadays they using many accounts on different websites. To login to websites they need to remember all passwords. So users would choose easy to remember passwords, but these passwords are not safe. Reusing passwords across different websites may cause users to lose their information which is stored in websites once the password hacked or compromised by attacker. Second, hackers can install malicious software to get the passwords, when user typing their username and password into unknown public computers. In this paper, developing web based security analysis of one Time password authentication schemes using mobile application. A user authentication protocol which involves user's cell phone and short message service to prevent password stealing and reuse attacks. User's only need to remember a long term password for login on different websites.","PeriodicalId":6426,"journal":{"name":"2013 International Conference on Emerging Trends in VLSI, Embedded System, Nano Electronics and Telecommunication System (ICEVENT)","volume":"44 1","pages":"1-3"},"PeriodicalIF":0.0000,"publicationDate":"2013-04-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":"{\"title\":\"Web based security analysis of OPASS authentication schemes using mobile application\",\"authors\":\"M. Rama, S. Raja\",\"doi\":\"10.1109/ICEVENT.2013.6496552\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Graphical password, text password are authentication of users on websites because of its simplicity and easy. User's passwords are easy to hack by using different malicious programs and threats. First, Users select easy to remember password because nowadays they using many accounts on different websites. To login to websites they need to remember all passwords. So users would choose easy to remember passwords, but these passwords are not safe. Reusing passwords across different websites may cause users to lose their information which is stored in websites once the password hacked or compromised by attacker. Second, hackers can install malicious software to get the passwords, when user typing their username and password into unknown public computers. In this paper, developing web based security analysis of one Time password authentication schemes using mobile application. A user authentication protocol which involves user's cell phone and short message service to prevent password stealing and reuse attacks. User's only need to remember a long term password for login on different websites.\",\"PeriodicalId\":6426,\"journal\":{\"name\":\"2013 International Conference on Emerging Trends in VLSI, Embedded System, Nano Electronics and Telecommunication System (ICEVENT)\",\"volume\":\"44 1\",\"pages\":\"1-3\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2013-04-11\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"4\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2013 International Conference on Emerging Trends in VLSI, Embedded System, Nano Electronics and Telecommunication System (ICEVENT)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICEVENT.2013.6496552\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2013 International Conference on Emerging Trends in VLSI, Embedded System, Nano Electronics and Telecommunication System (ICEVENT)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICEVENT.2013.6496552","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 4

摘要

图形密码和文本密码以其简单、方便的特点成为网站用户的认证方式。用户的密码很容易被不同的恶意程序和威胁破解。首先，用户选择容易记住的密码，因为现在他们在不同的网站上使用许多帐户。为了登录网站，他们需要记住所有的密码。所以用户会选择容易记住的密码，但这些密码并不安全。在不同的网站上重复使用密码可能会导致用户丢失存储在网站上的信息，一旦密码被攻击者入侵或泄露。其次，当用户在未知的公共计算机上输入用户名和密码时，黑客可以安装恶意软件来获取密码。本文开发了基于web的一次性密码认证方案的安全性分析。一种涉及用户手机和短信业务的用户认证协议，防止密码窃取和重用攻击。用户只需要记住一个长期密码登录不同的网站。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Web based security analysis of OPASS authentication schemes using mobile application

Graphical password, text password are authentication of users on websites because of its simplicity and easy. User's passwords are easy to hack by using different malicious programs and threats. First, Users select easy to remember password because nowadays they using many accounts on different websites. To login to websites they need to remember all passwords. So users would choose easy to remember passwords, but these passwords are not safe. Reusing passwords across different websites may cause users to lose their information which is stored in websites once the password hacked or compromised by attacker. Second, hackers can install malicious software to get the passwords, when user typing their username and password into unknown public computers. In this paper, developing web based security analysis of one Time password authentication schemes using mobile application. A user authentication protocol which involves user's cell phone and short message service to prevent password stealing and reuse attacks. User's only need to remember a long term password for login on different websites.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2013 International Conference on Emerging Trends in VLSI, Embedded System, Nano Electronics and Telecommunication System (ICEVENT)

自引率

0.00%

发文量