Securing One Time Password (OTP) for Multi-Factor Out-of-Band Authentication through a 128-bit Blowfish Algorithm

Reyes, Ariel Roy L; Festijo, Enrique D.; Medina, Ruji P.

doi:10.17762/ijcnis.v10i1.3188

Cited by 4 publications

(4 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Keylogger attackers [62] infect the user's computer using USB sticks, keyboard strokes, and system bugs while users log in to the webpages by typing in their passwords and credit card numbers. Attackers can easily recognize the keystroke patterns and log in to the user system [63]. Criminals furtively move the personal or financial records of any company or employees by applying this technique from the client side.…”

Section: Integrity Attackmentioning

confidence: 99%

Blockchain-Enabled Cybersecurity Provision for Scalable Heterogeneous Network: A Comprehensive Survey

Shohidul Islam,

Arafatur Rahman,

Ariff Bin Ameedeen

et al. 2024

Computer Modeling in Engineering &Amp; Sciences

View full text Add to dashboard Cite

Blockchain-enabled cybersecurity system to ensure and strengthen decentralized digital transaction is gradually gaining popularity in the digital era for various areas like finance, transportation, healthcare, education, and supply chain management. Blockchain interactions in the heterogeneous network have fascinated more attention due to the authentication of their digital application exchanges. However, the exponential development of storage space capabilities across the blockchain-based heterogeneous network has become an important issue in preventing blockchain distribution and the extension of blockchain nodes. There is the biggest challenge of data integrity and scalability, including significant computing complexity and inapplicable latency on regional network diversity, operating system diversity, bandwidth diversity, node diversity, etc., for decision-making of data transactions across blockchain-based heterogeneous networks. Data security and privacy have also become the main concerns across the heterogeneous network to build smart IoT ecosystems. To address these issues, today's researchers have explored the potential solutions of the capability of heterogeneous network devices to perform data transactions where the system stimulates their integration reliably and securely with blockchain. The key goal of this paper is to conduct a state-of-the-art and comprehensive survey on cybersecurity enhancement using blockchain in the heterogeneous network. This paper proposes a full-fledged taxonomy to identify the main obstacles, research gaps, future research directions, effective solutions, and most relevant blockchain-enabled cybersecurity systems. In addition, Blockchain based heterogeneous network framework with cybersecurity is proposed in this paper to meet the goal of maintaining optimal performance data transactions among organizations. Overall, this paper provides an in-depth description based on the critical analysis to overcome the existing work gaps for future research where it presents a potential cybersecurity design with key requirements of blockchain across a heterogeneous network.

show abstract

Section: Integrity Attackmentioning

confidence: 99%

Blockchain-Enabled Cybersecurity Provision for Scalable Heterogeneous Network: A Comprehensive Survey

Shohidul Islam,

Arafatur Rahman,

Ariff Bin Ameedeen

et al. 2024

Computer Modeling in Engineering &Amp; Sciences

View full text Add to dashboard Cite

show abstract

“…Hence, there have been a lot of approaches and techniques in securing the client-server communication and other related online services and transactions. According to [33], the use of Short Message Service (SMS)-based One Time Password (OTP) is one of the most commonly used multi-factor authentication and authorization mechanism to address security issues on various online services. Another approach is the use of Radio Frequency Identification (RFID) technology for authentication.…”

Section: Introductionmentioning

confidence: 99%

A New Approach in Expanding the Hash Size of MD5

Maliberan¹,

Sison²,

Medina³

2022

Int. j. commun. netw. inf. secur.

Self Cite

View full text Add to dashboard Cite

The enhanced MD5 algorithm has been developed by expanding its hash value up to 1280 bits from the original size of 128 bit using XOR and AND operators. Findings revealed that the hash value of the modified algorithm was not cracked or hacked during the experiment and testing using powerful bruteforce, dictionary, cracking tools and rainbow table such as CrackingStation, Hash Cracker, Cain and Abel and Rainbow Crack which are available online thus improved its security level compared to the original MD5. Furthermore, the proposed method could output a hash value with 1280 bits with only 10.9 ms additional execution time from MD5. Keywords: MD5 algorithm, hashing, client-server communication, modified MD5, hacking, bruteforce, rainbow table.

show abstract

“…Passwords provide a mechanism to verify authenticity [1]. They are vital for any system, whether it is online or offline [2].…”

Section: Introductionmentioning

confidence: 99%

Introducing a Machine Learning Password Metric Based on EFKM Clustering Algorithm

Almousa

Migdady

2022

Int. j. commun. netw. inf. secur.

View full text Add to dashboard Cite

we introduce a password strength metric using Enhanced Fuzzy K-Means clustering algorithm (EFKM henceforth). The EFKM is trained on the OWASP list of 10002 weak passwords. After that, the optimized centroids are maximized to develop a password strength metric. The resulting meter was validated by contrasting with three entropy-based metrics using two datasets: the training dataset (OWASP) and a dataset that we collected from github website that contains 5189451 leaked passwords. Our metric is able to recognize all the passwords from the OWASP as weak passwords only. Regarding the leaked passwords, the metric recognizes almost the entire set as weak passwords. We found that the results of the EFKM-based metric and the entropy-based meters are consistent. Hence the EFKM metric demonstrates its validity as an efficient password strength checker.

show abstract

Securing One Time Password (OTP) for Multi-Factor Out-of-Band Authentication through a 128-bit Blowfish Algorithm

Cited by 4 publications

References 14 publications

Blockchain-Enabled Cybersecurity Provision for Scalable Heterogeneous Network: A Comprehensive Survey

Blockchain-Enabled Cybersecurity Provision for Scalable Heterogeneous Network: A Comprehensive Survey

A New Approach in Expanding the Hash Size of MD5

Introducing a Machine Learning Password Metric Based on EFKM Clustering Algorithm

Contact Info

Product

Resources

About