Enhancing Security of the Reduced-Operation Two-Factor Authentication by Using Ambient WiFi

Recently several reduced-operation two Factor authentication (2FA) methods have been proposed to improve the usability of traditional 2FA. The existing works cannot protect the user's password from online guessing attack and offline dictionary attack. They cannot resist the identity fraud attac...

Full description

Saved in:
Bibliographic Details
Published in:Chinese Journal of Electronics 2018-05, Vol.27 (3), p.625-633
Main Authors: Liu, Dong, Chen, Jing, Du, Ruiying, Zhang, Huanguo
Format: Article
Language:English
Subjects:
ambient WiFi
authorisation
colocated attackers
computer network security
Fuzzy vault
identity fraud attack resistance
offline dictionary attack
online guessing attack
password guessing attack resistance
Proximate authentication
reduced‐operation 2FA
reduced‐operation two‐factor authentication
salt guessing attack resistance
security analysis
Two factor authentication (2FA)
user password protection
WiFi‐based 2FA approach
wireless LAN
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Recently several reduced-operation two Factor authentication (2FA) methods have been proposed to improve the usability of traditional 2FA. The existing works cannot protect the user's password from online guessing attack and offline dictionary attack. They cannot resist the identity fraud attack caused by co-located attackers who have obtained the victim's password. To solve these problems, we provide a WiFi-based 2FA approach which can enhance security of the reduced-operation 2FA but not increase the complexity of the operation for a user. We analyze our approach's security in terms of identity fraud attack resistance, salt guessing attack resistance, and password guessing attack resistance. We also implement a prototype system and test its performance in various scenarios, e.g. lab, library, and dormitory. The security analysis and experimental results show the effectiveness of our scheme for authentication.
ISSN:1022-4653
2075-5597
DOI:10.1049/cje.2018.03.004