A novel Two-Factor HoneyToken Authentication Mechanism

Papaspirou, Vassilis; Μαγλαράς, Λέανδρος; Ferrag, Mohamed Amine; Kantzavelou, Ioanna; Janicke, Helge; Douligeris, Christos

doi:10.1109/icccn52240.2021.9522319

Cited by 11 publications

(4 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The importance of those methods is to not change the business processes too much, be efficient and also easily applicable to several systems and platforms. A novel method entitled 2FHA (two factor honeytoken authentication mechanism) was recently proposed that combines honeytokens and 2FA in order to offer increased level of security without compromising user friendliness and efficiency [30,31].…”

Section: Discussionmentioning

confidence: 99%

Modern Authentication Methods: A Comprehensive Survey

Papathanasaki

Μαγλαράς

Ayres

2022

ACRT

Self Cite

View full text Add to dashboard Cite

This paper presents a comprehensive investigation of modern authentication schemes. We start with the importance of authentication methods and the different authentication processes. Then we present the authentication criteria used and we perform a comparison of authentication methods in terms of universality, uniqueness, collectability, performance, acceptability, and spoofing. Finally, we present multi-factor authentication challenges and security issues and present future directions.

show abstract

Section: Discussionmentioning

confidence: 99%

Modern Authentication Methods: A Comprehensive Survey

Papathanasaki

Μαγλαράς

Ayres

2022

ACRT

Self Cite

View full text Add to dashboard Cite

show abstract

“…A Blockchain-based two Factor Honeytoken Authentication System [11]. While the integration of blockchain technology into the two-factor Honeytoken authentication method shows promise in enhancing security, there are notable drawbacks to consider.…”

Section: Breaking Mobile Notification-based Authentication Withmentioning

confidence: 99%

Two Factor Authentication by Using Decentralized File Storage System

Suresh,

Balachander,

Varman

et al. 2024

Preprint

View full text Add to dashboard Cite

In today's digital age, the apps we use for social and business things are getting more advanced, so we need better ways to check if you are really you. Two-Factor Authentication (2FA) is crucial for making the usual way we confirm identities better, but it does have some challenges. Usual 2FA methods have vulnerabilities such as SIM swapping, denial of service (DoS), and man-in-the-middle (MITM)[1] attacks.These issues continue to exist even when services say they have strong encryption. The central system in 2FA is also problematic because if it's breached, an attacker could impersonate an authorized user or mess up the whole service.To tackle these issues, we are proposing decentralized 2FA methods. This means spreading out the authentication process and using public key encryption. In this system, the user's secret keys are encrypted with their wallet's public key, giving users control over their authentication.Users can generate distinct passwords even without their main device. Therefore, as digital security needs grow, the limitations of traditional 2FA are clear. The solution is to shift to decentralized methods, offering better security and more control for users over how they authenticate.

show abstract

“…To address issues related to password protection, user behaviors that pose threats to sensitive systems, and 2FA mechanisms, the work in [9] aims at providing a high level of security and uninterrupted services while safeguarding systems and users from unau-thorized access to resources and preventing privacy violations and personal information disclosure. By utilizing honeyword principles and incorporating QR codes, which make the implementation platform-independent, this method allows for mobile user access, and the selected strategy seeks to detect and prevent attacks.…”

Section: Related Workmentioning

confidence: 99%

A Novel Authentication Method That Combines Honeytokens and Google Authenticator

et al. 2023

View full text Add to dashboard Cite

Despite the rapid development of technology, computer systems still rely heavily on passwords for security, which can be problematic. Although multi-factor authentication has been introduced, it is not completely effective against more advanced attacks. To address this, this study proposes a new two-factor authentication method that uses honeytokens. Honeytokens and Google Authenticator are combined to create a stronger authentication process. The proposed approach aims to provide additional layers of security and protection to computer systems, increasing their overall security beyond what is currently provided by single-password or standard two-factor authentication methods. The key difference is that the proposed system resembles a two-factor authentication but, in reality, works like a multi-factor authentication system. Multi-factor authentication (MFA) is a security technique that verifies a user’s identity by requiring multiple credentials from distinct categories. These typically include knowledge factors (something the user knows, such as a password or PIN), possession factors (something the user has, such as a mobile phone or security token), and inherence factors (something the user is, such as a biometric characteristic like a fingerprint). This multi-tiered approach significantly enhances protection against potential attacks. We examined and evaluated our system’s robustness against various types of attacks. From the user’s side, the system is as friendly as a two-factor authentication method with an authenticator and is more secure.

show abstract

A novel Two-Factor HoneyToken Authentication Mechanism

Cited by 11 publications

References 19 publications

Modern Authentication Methods: A Comprehensive Survey

Modern Authentication Methods: A Comprehensive Survey

Two Factor Authentication by Using Decentralized File Storage System

A Novel Authentication Method That Combines Honeytokens and Google Authenticator

Contact Info

Product

Resources

About