Kontun: A Framework for recommendation of authentication schemes and methods

Velásquez, Ignacio; Caro, Ángélica; Rodríguez, Alfonso Sánchez

doi:10.1016/j.infsof.2017.11.004

Cited by 17 publications

(16 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A summary of the constructed framework's characteristics is provided next. A complete description can be found in [26].…”

Section: The Frameworkmentioning

confidence: 99%

“…Specifically, the framework's recommendations were compared with the authentication schemes or methods implemented in existing applications developed by the PSDC or with the recommendations that their experts would give for hypothetical situations. The case studies are described in detail in [26]. Next, a brief summary of their application is provided.…”

Section: Case Studiesmentioning

confidence: 99%

See 1 more Smart Citation

Multifactor Authentication Methods: A Framework for Their Comparison and Selection

Velásquez¹,

Caro²,

Rodríguez³

2020

Computer and Network Security

Self Cite

View full text Add to dashboard Cite

There are multiple techniques for users to authenticate themselves in software applications, such as text passwords, smart cards, and biometrics. Two or more of these techniques can be combined to increase security, which is known as multifactor authentication. Systems commonly utilize authentication as part of their access control with the objective of protecting the information stored within them. However, the decision of what authentication technique to implement in a system is often taken by the software development team in charge of it. A poor decision during this step could lead to a fatal mistake in relation to security, creating the necessity for a method that systematizes this task. Thus, this book chapter presents a theoretical decision framework that tackles this issue by providing guidelines based on the evaluated application's characteristics and target context. These guidelines were defined through the application of an extensive action-research methodology in collaboration with experts from a multinational software development company.

show abstract

“…A summary of the constructed framework's characteristics is provided next. A complete description can be found in [26].…”

Section: The Frameworkmentioning

confidence: 99%

Section: Case Studiesmentioning

confidence: 99%

Multifactor Authentication Methods: A Framework for Their Comparison and Selection

Velásquez¹,

Caro²,

Rodríguez³

2020

Computer and Network Security

Self Cite

View full text Add to dashboard Cite

show abstract

“…Partly, because of the rapid pace of technology innovation in the domain, ever changing regulatory guidelines and the importance of identity management for the functioning of societies. These are exemplified in the following works: classification of authentication systems and their usability and drawbacks [9], survey of existing authentication methods [10], framework for recommendation of authentication schemes [11] and a review of authentication using behavioral biometrics [12]. Literature reviews on identity management have been done from various perspectives, such as surveys in the context of Internet of Things [13], authentication for e-government services [14], on privacy preservation [15] and strategies [16], identity and access management in cloud environments [17].…”

Section: Related Literaturementioning

confidence: 99%

The Review of Non-Technical Assumptions in Digital Identity Architectures

Bazarhanova¹,

Smolander²

2020

Proceedings of the Annual Hawaii International Conference on System Sciences

View full text Add to dashboard Cite

The literature on digital identity management systems (IdM) is abundant and solutions vary by technology components and non-technical requirements. In the long run, however, there is a need for exchanging identities across domains or even borders, which requires interoperable solutions and flexible architectures. This article aims to give an overview of the current research on digital identity management. We conduct a systematic literature review of digital identity solution architectures and extract their inherent non-technical assumptions. The findings show that solution designs can be based on organizational, business and trust assumptions as well as human-user assumptions. Namely, establishing the trust relationships and collaborations among participating organizations; human-users capability for maintaining private cryptographic material or the assumptions that win-win business models could be easily identified. By reviewing the key findings of solutions proposed and looking at the differences and commonalities of their technical, organizational and social requirements, we discuss their potential real-life inhibitors and identify opportunities for future research in IdM.

show abstract

“…In today's world, the legacy authentication process based on static passwords is considered a vulnerable authentication mechanism (Stanislav, 2015). A combined mechanism presented by combining the static factor (password only) and a multi-authentication factor that depends on an OTP (IETF, 1998) or a biometrics authentication factor (Velásquez et al, 2018) is more robust and trusted.…”

Section: Authentication and It Securitymentioning

confidence: 99%

Multi-Factor Authentication for e-Government Services using a Smartphone Application and Biometric Identity Verification

Al-Rousan¹,

Intrigila²

2020

Journal of Computer Science

View full text Add to dashboard Cite

The growing usage of smartphones and tablets has a significant impact on e-government services, according to Cisco and accounted for 59 percent of total IP traffic during 2018. In the provision of e-government services, usernames and passwords are still the most common authentication scheme. A password, however, is a weak authentication scheme, as it can easily be hacked over an insecure network connection. Therefore, a robust security solution for data in transit is becoming increasingly necessary. This paper proposes an authentication scheme that integrates multi-factor authentication procedures, a One-Time Password (OTP) and biometric authentication ("facial recognition" or "fingerprint") for the unified authentication of users before allowing them to access egovernment services via a self-enrollment process.

show abstract

Kontun: A Framework for recommendation of authentication schemes and methods

Cited by 17 publications

References 17 publications

Multifactor Authentication Methods: A Framework for Their Comparison and Selection

Multifactor Authentication Methods: A Framework for Their Comparison and Selection

The Review of Non-Technical Assumptions in Digital Identity Architectures

Multi-Factor Authentication for e-Government Services using a Smartphone Application and Biometric Identity Verification

Contact Info

Product

Resources

About