English
Related papers

Related papers: Behavioural Analytics: Beyond Risk-based MFA

200 papers

In the era of pervasive cyber threats and exponential growth in digital services, the inadequacy of single-factor authentication has become increasingly evident. Multi-Factor Authentication (MFA), which combines knowledge-based factors…

Cryptography and Security · Computer Science 2025-10-08 Abdelilah Ganmati , Karim Afdel , Lahcen Koutti

This paper examines the complex nature of cyber attacks through an analysis of the LastPass breach. It argues for the integration of human-centric considerations into cybersecurity measures, focusing on mitigating factors such as…

Human-Computer Interaction · Computer Science 2024-05-22 Niroop Sugunaraj

The traditional two-factor authentication (2FA) methods primarily rely on the user manually entering a code or token during the authentication process. This can be burdensome and time-consuming, particularly for users who must be…

Cryptography and Security · Computer Science 2024-01-15 Ali Abdullah S. AlQahtani , Thamraa Alshayeb , Mahmoud Nabil , Ahmad Patooghy

Single-factor password-based authentication is generally the norm to access on-line Web-sites. While single-factor authentication is well known to be a weak form of authentication, a further concern arises when considering the possibility…

Cryptography and Security · Computer Science 2020-01-30 Simone Raponi , Roberto Di Pietro

The issues of both system security and safety can be dissected integrally from the perspective of behavioral \emph{appropriateness}. That is, a system is secure or safe can be judged by whether the behavior of certain agent(s) is…

Cryptography and Security · Computer Science 2024-03-26 Cheng Wang , Hao Tang , Hangyu Zhu , Junhan Zheng , Changjun Jiang

The amount of secure data being stored on mobile devices has grown immensely in recent years. However, the security measures protecting this data have stayed static, with few improvements being done to the vulnerabilities of current…

Cryptography and Security · Computer Science 2022-05-18 Laura Pryor , Jacob Mallet , Rushit Dave , Naeem Seliya , Mounika Vanamala , Evelyn Sowells Boone

Cloud services have become an essential infrastructure for enterprises and individuals. Access to these cloud services is typically governed by Identity and Access Management systems, where user authentication often relies on passwords.…

Cryptography and Security · Computer Science 2025-04-08 Darren Fürst , Andreas Aßmuth

Deauthentication is an important component of any authentication system. The widespread use of computing devices in daily life has underscored the need for zero-effort deauthentication schemes. However, the quest for eliminating user effort…

Cryptography and Security · Computer Science 2016-02-16 O. Huhta , P. Shrestha , S. Udar , M. Juuti , N. Saxena , N. Asokan

Password-based authentication faces various security and usability issues. Password managers help alleviate some of these issues by enabling users to manage their passwords effectively. However, malicious client-side scripts and browser…

Cryptography and Security · Computer Science 2024-02-12 Anuj Gautam , Tarun Kumar Yadav , Kent Seamons , Scott Ruoti

Prior work has shown that multibiometric systems are vulnerable to presentation attacks, assuming that their matching score distribution is identical to that of genuine users, without fabricating any fake trait. We have recently shown that…

Computer Vision and Pattern Recognition · Computer Science 2016-09-07 Battista Biggio , Giorgio Fumera , Gian Luca Marcialis , Fabio Roli

A myriad of authentication mechanisms embody a continuous evolution from verbal passwords in ancient times to contemporary multi-factor authentication. Nevertheless, digital asset heists and numerous identity theft cases illustrate the…

Cryptography and Security · Computer Science 2024-06-27 Marwa Mouallem , Ittay Eyal

Risk-based authentication (RBA) is an adaptive security measure to strengthen password-based authentication. RBA monitors additional implicit features during password entry such as device or geolocation information, and requests additional…

Cryptography and Security · Computer Science 2020-03-18 Stephan Wiefling , Luigi Lo Iacono , Markus Dürmuth

The proliferation of Internet services has led to an increasing need to protect private data. User authentication serves as a crucial mechanism to ensure data security. Although robust authentication forms the cornerstone of remote service…

Cryptography and Security · Computer Science 2024-12-18 Hamidreza Fereidouni , Abdelhakim Senhaji Hafid , Dimitrios Makrakis , Yaser Baseri

With the rapid growth of online services, the number of online accounts proliferates. The security of a single user account no longer depends merely on its own service provider but also the accounts on other service platforms(We refer to…

Cryptography and Security · Computer Science 2021-07-21 Weizhao Jin , Xiaoyu Ji , Ruiwen He , Zhou Zhuang , Wenyuan Xu , Yuan Tian

Nowadays smartphones come embedded with multiple motion sensors, such as an accelerometer, a gyroscope and an orientation sensor. With these sensors, apps can gather more information and therefore provide end users with more functionality.…

Cryptography and Security · Computer Science 2014-10-29 Yihang Song , Madhur Kukreti , Rahul Rawat , Urs Hengartner

Password authentication is a very important system security procedure to gain access to user resources. In the Traditional password authentication methods a server has check the authenticity of the users. In our proposed method users can…

Cryptography and Security · Computer Science 2011-12-13 A. S. N. Chakravarthy , Penmetsa V. Krishna Raja , Prof. P. S. Avadhani

While attack graphs are useful for identifying major cybersecurity threats affecting a system, they do not provide operational support for determining the likelihood of having a known vulnerability exploited, or that critical system nodes…

Cryptography and Security · Computer Science 2026-04-21 Francesco Vitale , Simone Guarino , Stefano Perone , Massimiliano Rak , Nicola Mazzocca

Insider threat is one of the most pressing threats in the field of information security as it leads to huge financial losses by the companies. Most of the proposed methods for detecting this threat require expensive and invasive equipment,…

Cryptography and Security · Computer Science 2020-05-07 Azamat Sultanov , Konstantin Kogos

User profiling is a critical component of adaptive risk-based authentication, yet it raises significant privacy concerns, particularly when handling sensitive data. Profiling involves collecting and aggregating various user features,…

Cryptography and Security · Computer Science 2025-08-05 Yaser Baseri , Abdelhakim Senhaji Hafid , Dimitrios Makrakis

One of the data security and privacy concerns is of insider threats, where legitimate users of the system abuse the access privileges they hold. The insider threat to data security means that an insider steals or leaks sensitive personal…

Cryptography and Security · Computer Science 2020-11-05 Muhammad Imran Khan , Simon N. Foley , Barry O'Sullivan