English
Related papers

Related papers: Excavating Vulnerabilities Lurking in Multi-Factor…

200 papers

Security vulnerabilities of traditional single factor authentication has become a major concern for security practitioners and researchers. To mitigate single point failures, new and technologically advanced Multi-Factor Authentication…

Cryptography and Security · Computer Science 2019-08-19 Sanchari Das , Bingxing Wang , Zachary Tingle , L. Jean Camp

Traditional single-factor authentication possesses several critical security vulnerabilities due to single-point failure feature. Multi-factor authentication (MFA), intends to enhance security by providing additional verification steps.…

Cryptography and Security · Computer Science 2019-08-19 Sanchari Das , Bingxing Wang , L. Jean Camp

Approximately 61% of cyber attacks involve adversaries in possession of valid credentials. Attackers acquire credentials through various means, including phishing, dark web data drops, password reuse, etc. Multi-factor authentication (MFA)…

Cryptography and Security · Computer Science 2024-08-31 Sam Hays , Michael Sandborn , Jules White

To protect users from data breaches and phishing attacks, service providers typically implement two-factor authentication (2FA) to add an extra layer of security against suspicious login attempts. However, since 2FA can sometimes hinder…

Cryptography and Security · Computer Science 2024-11-19 Zhi Wang , Xin Yang , Du Chen , Han Gao , Meiqi Tian , Yan Jia , Wanpeng Li

Multi-Factor Authentication is intended to strengthen the security of password-based authentication by adding another factor, such as hardware tokens or one-time passwords using mobile apps. However, this increased authentication security…

Cryptography and Security · Computer Science 2023-09-20 Sabrina Amft , Sandra Höltervennhoff , Nicolas Huaman , Alexander Krause , Lucy Simko , Yasemin Acar , Sascha Fahl

This study investigates the effectiveness of multifactor authentication (MFA) in protecting commercial accounts from unauthorized access, with an additional focus on accounts with known credential leaks. We employ the benchmark-multiplier…

Cryptography and Security · Computer Science 2023-05-02 Lucas Augusto Meyer , Sergio Romero , Gabriele Bertoli , Tom Burt , Alex Weinert , Juan Lavista Ferres

The existing authentication system has two entry points (i.e., username and password fields) to interact with the outside, but neither of them has a gatekeeper, making the system vulnerable to cyberattacks. In order to ensure the…

Cryptography and Security · Computer Science 2024-09-26 Suyun Borjigin

In the era of pervasive cyber threats and exponential growth in digital services, the inadequacy of single-factor authentication has become increasingly evident. Multi-Factor Authentication (MFA), which combines knowledge-based factors…

Cryptography and Security · Computer Science 2025-10-08 Abdelilah Ganmati , Karim Afdel , Lahcen Koutti

Unauthorized access remains one of the critical security challenges in the realm of cybersecurity. With the increasing sophistication of attack techniques, the threat of unauthorized access is no longer confined to the conventional ones,…

Cryptography and Security · Computer Science 2025-07-23 Eyasu Getahun Chekole , Howard Halim , Jianying Zhou

This paper analyses the various authentication systems implemented for enhanced security and private re-position of an individual's log-in credentials. The first part of the paper describes the multi-factor authentication (MFA) systems,…

Cryptography and Security · Computer Science 2015-02-04 Tuhin Borgohain , Amardeep Borgohain , Uday Kumar , Sugata Sanyal

The use of passwords and the need to protect passwords are not going away. The majority of websites that require authentication continue to support password authentication. Even high-security applications such as Internet Banking portals,…

Networking and Internet Architecture · Computer Science 2020-11-13 Teik Guan Tan , Pawel Szalachowski , Jianying Zhou

Attacks targeting several millions of non-internet based application users are on the rise. These applications such as SMS and USSD typically do not benefit from existing multi-factor authentication methods due to the nature of their…

Cryptography and Security · Computer Science 2020-10-16 Andrew Kinai , Fred Otieno , Nelson Bore , Komminist Weldemariam

Despite being more secure and strongly promoted, two-factor (2FA) or multi-factor (MFA) schemes either fail to protect against recent phishing threats such as real-time MITM, controls/relay MITM, malicious browser extension-based phishing…

Cryptography and Security · Computer Science 2024-06-14 Sneha Shukla , Gaurav Varshney , Shreya Singh , Swati Goel

Risk-based authentication (RBA) aims to protect users against attacks involving stolen passwords. RBA monitors features during login, and requests re-authentication when feature values widely differ from previously observed ones. It is…

Cryptography and Security · Computer Science 2022-11-11 Stephan Wiefling , Paul René Jørgensen , Sigurd Thunem , Luigi Lo Iacono

The rapid development of information and network technologies motivates the emergence of various new computing paradigms, such as distributed computing, and edge computing. This also enables more and more network enterprises to provide…

Cryptography and Security · Computer Science 2021-02-01 Jinyong Chen , Reiner Dojen , Anca Jurcut

Two-factor authentication (2FA) schemes that rely on a combination of knowledge factors (e.g., PIN) and device possession have gained popularity. Some of these schemes remain secure even against strong adversaries that (a) observe the…

Cryptography and Security · Computer Science 2022-08-08 Steven J. Murdoch , Aydin Abadi

We propose a two-factor authentication (2FA) mechanism called 2D-2FA to address security and usability issues in existing methods. 2D-2FA has three distinguishing features: First, after a user enters a username and password on a login…

Cryptography and Security · Computer Science 2021-11-01 Maliheh Shirvanian , Shashank Agrawal

To prevent password breaches and guessing attacks, banks increasingly turn to two-factor authentication (2FA), requiring users to present at least one more factor, such as a one-time password generated by a hardware token or received via…

Cryptography and Security · Computer Science 2015-01-20 Kat Krol , Eleni Philippou , Emiliano De Cristofaro , M. Angela Sasse

The digital age requires strong security measures to protect online activities. Two-Factor Authentication (2FA) has emerged as a critical solution. However, its implementation presents significant challenges, particularly in terms of…

Cryptography and Security · Computer Science 2025-02-18 Alexander Lengert

This work reports that the Systematic Literature Review process is responsible for providing theoretical support to research in the Threat Model and Multi-Factor Authentication. However, different from the related works, this study aims to…

Cryptography and Security · Computer Science 2022-09-28 Wesley dos Reis Bezerra , Cristiano Antônio de Souza , Carla Merkle Westphall , Carlos Becker Westphall
‹ Prev 1 2 3 10 Next ›