English
Related papers

Related papers: Work in progress: Identifying Two-Factor Authentic…

200 papers

Heuristics for user experience state that users will transfer their expectations from one product to another. A lack of consistency between products can increase users' cognitive friction, leading to frustration and rejection. This paper…

Cryptography and Security · Computer Science 2022-10-19 Sanam Ghorbani Lyastani , Michael Backes , Sven Bugiel

Attackers increasingly, and with high success rates, use social engineering techniques to circumvent second factor authentication (2FA) technologies, compromise user accounts and sidestep fraud detection technologies. We introduce a social…

Cryptography and Security · Computer Science 2020-01-20 Markus Jakobsson

Security vulnerabilities of traditional single factor authentication has become a major concern for security practitioners and researchers. To mitigate single point failures, new and technologically advanced Multi-Factor Authentication…

Cryptography and Security · Computer Science 2019-08-19 Sanchari Das , Bingxing Wang , Zachary Tingle , L. Jean Camp

This paper analyses the various authentication systems implemented for enhanced security and private re-position of an individual's log-in credentials. The first part of the paper describes the multi-factor authentication (MFA) systems,…

Cryptography and Security · Computer Science 2015-02-04 Tuhin Borgohain , Amardeep Borgohain , Uday Kumar , Sugata Sanyal

The existing authentication system has two entry points (i.e., username and password fields) to interact with the outside, but neither of them has a gatekeeper, making the system vulnerable to cyberattacks. In order to ensure the…

Cryptography and Security · Computer Science 2024-09-26 Suyun Borjigin

The traditional two-factor authentication (2FA) methods primarily rely on the user manually entering a code or token during the authentication process. This can be burdensome and time-consuming, particularly for users who must be…

Cryptography and Security · Computer Science 2024-01-15 Ali Abdullah S. AlQahtani , Thamraa Alshayeb , Mahmoud Nabil , Ahmad Patooghy

Risk-based authentication (RBA) aims to protect end-users against attacks involving stolen or otherwise guessed passwords without requiring a second authentication method all the time. Online services typically set limits on what is still…

Cryptography and Security · Computer Science 2023-08-30 Jan-Phillip Makowski , Daniela Pöhn

Despite being more secure and strongly promoted, two-factor (2FA) or multi-factor (MFA) schemes either fail to protect against recent phishing threats such as real-time MITM, controls/relay MITM, malicious browser extension-based phishing…

Cryptography and Security · Computer Science 2024-06-14 Sneha Shukla , Gaurav Varshney , Shreya Singh , Swati Goel

Traditional single-factor authentication possesses several critical security vulnerabilities due to single-point failure feature. Multi-factor authentication (MFA), intends to enhance security by providing additional verification steps.…

Cryptography and Security · Computer Science 2019-08-19 Sanchari Das , Bingxing Wang , L. Jean Camp

The majority of systems rely on user authentication on passwords, but passwords have so many weaknesses and widespread use that easily raise significant security concerns, regardless of their encrypted form. Users hold the same password for…

Cryptography and Security · Computer Science 2021-01-22 Vassilis Papaspirou , Leandros Maglaras , Mohamed Amine Ferrag , Ioanna Kantzavelou , Helge Janicke , Christos Douligeris

Attacks targeting several millions of non-internet based application users are on the rise. These applications such as SMS and USSD typically do not benefit from existing multi-factor authentication methods due to the nature of their…

Cryptography and Security · Computer Science 2020-10-16 Andrew Kinai , Fred Otieno , Nelson Bore , Komminist Weldemariam

Behavior change ideas from health psychology can also help boost end user compliance with security recommendations, such as adopting two-factor authentication (2FA). Our research adapts the Transtheoretical Model Stages of Change from…

Human-Computer Interaction · Computer Science 2022-05-17 Cori Faklaris , Laura Dabbish , Jason I. Hong

Multi-Factor Authentication (MFA) enhances login security by requiring multiple authentication factors. Its adoption has increased in response to more frequent and sophisticated attacks. Duo is widely used by organizations including Fortune…

Cryptography and Security · Computer Science 2026-02-03 Renascence Tarafder Prapty , Gene Tsudik

The proliferation of sensitive information being stored online highlights the pressing need for secure and efficient user authentication methods. To address this issue, this paper presents a novel zero-effort two-factor authentication (2FA)…

Cryptography and Security · Computer Science 2023-03-07 Ali Abdullah S. AlQahtani , Thamraa Alshayeb

Risk-based authentication (RBA) extends authentication mechanisms to make them more robust against account takeover attacks, such as those using stolen passwords. RBA is recommended by NIST and NCSC to strengthen password-based…

Cryptography and Security · Computer Science 2023-01-05 Stephan Wiefling , Jan Tolsdorf , Luigi Lo Iacono

Approximately 61% of cyber attacks involve adversaries in possession of valid credentials. Attackers acquire credentials through various means, including phishing, dark web data drops, password reuse, etc. Multi-factor authentication (MFA)…

Cryptography and Security · Computer Science 2024-08-31 Sam Hays , Michael Sandborn , Jules White

The use of passwords and the need to protect passwords are not going away. The majority of websites that require authentication continue to support password authentication. Even high-security applications such as Internet Banking portals,…

Networking and Internet Architecture · Computer Science 2020-11-13 Teik Guan Tan , Pawel Szalachowski , Jianying Zhou

Two-factor authentication protects online accounts even if passwords are leaked. Most users, however, prefer password-only authentication. One reason why two-factor authentication is so unpopular is the extra steps that the user must…

Cryptography and Security · Computer Science 2015-08-04 Nikolaos Karapanos , Claudio Marforio , Claudio Soriente , Srdjan Capkun

In the era of pervasive cyber threats and exponential growth in digital services, the inadequacy of single-factor authentication has become increasingly evident. Multi-Factor Authentication (MFA), which combines knowledge-based factors…

Cryptography and Security · Computer Science 2025-10-08 Abdelilah Ganmati , Karim Afdel , Lahcen Koutti

As e-commerce continues to expand, the urgency for stronger privacy and security measures becomes increasingly critical, particularly on platforms frequented by younger users who are often less aware of potential risks. In our analysis of…

Cryptography and Security · Computer Science 2024-10-22 Urvashi Kishnani , Sanchari Das