Show simple item record

dc.contributor.authorRen, Xuguang
dc.contributor.authorWu, Xin-Wen
dc.contributor.authorTang, Kun
dc.date.accessioned2017-05-03T15:50:39Z
dc.date.available2017-05-03T15:50:39Z
dc.date.issued2012
dc.date.modified2013-03-24T22:11:59Z
dc.identifier.issn17387906
dc.identifier.urihttp://hdl.handle.net/10072/49705
dc.description.abstractOn-line service providers and their users have suffered from various sophisticated attacks on user authentication. There is a strong desire to develop and implement more secure authentication schemes to protect web services against security threats. Intensive work has been done trying to improve upon traditional password authentication, resulting in two-factor authentication, session key exchanging schemes and time dynamic password schemes. However, these schemes have been proved not effective, due to their security design or additional overheads. In this paper, we proposed a secure dynamic user authentication scheme. Unlike the traditional password authentication (where a static password is used) or two-factor authentication (which requires the user's password and another pieces of time-dynamic authentication information), our proposed authentication scheme will be based on a dynamic one-time password (OTP), which is generated by the user's password, the authenticating time, as well as a unique property that represents the user's location at the moment of authentication (for example, the MAC address of the machine that the user uses for authentication). Compared with traditional OTPs which are only time-dynamic, the proposed scheme is based on both time and space (location). It is thus called TSPass. As we will analyze, our TSPass authentication improves upon two-factor authentication and other currently known authentication schemes, and effectively protect user's account against various attacks (including phishing attack, reply attack, and perfect-man-in-the-middle attack). Our testing and simulation work show that the proposed authentication is efficient and user friendly.
dc.description.peerreviewedYes
dc.description.publicationstatusYes
dc.languageEnglish
dc.language.isoeng
dc.publisherIJCSNS
dc.publisher.placeKorea
dc.publisher.urihttp://paper.ijcsns.org/07_book/html/201210/20121008.html
dc.relation.ispartofstudentpublicationN
dc.relation.ispartofpagefrom45
dc.relation.ispartofpageto53
dc.relation.ispartofissue10
dc.relation.ispartofjournalInternational Journal of Computer Science and Network Security
dc.relation.ispartofvolume12
dc.rights.retentionY
dc.subject.fieldofresearchData Format not elsewhere classified
dc.subject.fieldofresearchComputation Theory and Mathematics
dc.subject.fieldofresearchcode080499
dc.subject.fieldofresearchcode0802
dc.titleTSPass: A Dynamic User Authentication Scheme Based On Time and Space
dc.typeJournal article
dc.type.descriptionC1 - Articles
dc.type.codeC - Journal Articles
gro.date.issued2012
gro.hasfulltextNo Full Text
gro.griffith.authorWu, Xin-Wen


Files in this item

FilesSizeFormatView

There are no files associated with this item.

This item appears in the following Collection(s)

  • Journal articles
    Contains articles published by Griffith authors in scholarly journals.

Show simple item record