English
Related papers

Related papers: Verifiable Passkey: The Decentralized Authenticati…

200 papers

Phishing attacks remain one of the most prevalent threats to online security, with the Anti-Phishing Working Group reporting over 890,000 attacks in Q3 2025 alone. Traditional password-based authentication is particularly vulnerable to such…

Cryptography and Security · Computer Science 2026-04-23 Alexander Berladskyy , Andreas Aßmuth

With passkeys, the FIDO Alliance introduces the ability to sync FIDO2 credentials across a user's devices through passkey providers. This aims to mitigate user concerns about losing their devices and promotes the shift toward password-less…

Cryptography and Security · Computer Science 2025-01-14 Andre Büttner , Nils Gruschka

Passkeys -- discoverable WebAuthn credentials synchronised across devices are widely promoted as the future of passwordless authentication. Built on the FIDO2 standard, they eliminate shared secrets and resist phishing while offering…

Cryptography and Security · Computer Science 2026-03-23 Prince Bhardwaj , Nishanth Sastry

Passwordless authentication was first tested for seamless and secure merchant payments without the use of passwords or pins. It opened a whole new world of authentications giving up the former reliance on traditional passwords. It relied on…

Cryptography and Security · Computer Science 2023-07-17 Aditya Mitra , Anisha Ghosh , Sibi Chakkaravarthy Sethuraman

Fast Identity Online 2 (FIDO2), a modern authentication protocol, is gaining popularity as a default strong authentication mechanism. It has been recognized as a leading candidate to overcome limitations (e.g., it is phishing resistant) of…

Cryptography and Security · Computer Science 2023-09-14 Michal Kepkowski , Maciej Machulak , Ian Wood , Dali Kaafar

Password-authenticated identities, where users establish username-password pairs with individual servers and use them later on for authentication, is the most widespread user authentication method over the Internet. Although they are…

Cryptography and Security · Computer Science 2021-09-17 Pawel Szalachowski

Operating system and browser support that comes with the FIDO2 standard and the biometric user verification options increasingly available on smart phones has excited everyone, especially big tech companies, about the passwordless future.…

Cryptography and Security · Computer Science 2022-11-15 Kemal Bicakci , Yusuf Uzunay

Web authentication is a critical component of today's Internet and the digital world we interact with. The FIDO2 protocol enables users to leverage common devices to easily authenticate to online services in both mobile and desktop…

Cryptography and Security · Computer Science 2023-06-22 Wei-Zhu Yeoh , Michal Kepkowski , Gunnar Heide , Dali Kaafar , Lucjan Hanzlik

Authentication systems have evolved a lot since the 1960s when Fernando Corbato first proposed the password-based authentication. In 2013, the FIDO Alliance proposed using secure hardware for authentication, thus marking a milestone in the…

Cryptography and Security · Computer Science 2025-10-27 Aditya Mitra , Sibi Chakkaravarthy Sethuraman

Unequivocally, a single man in possession of a strong password is not enough to solve the issue of security. Studies indicate that passwords have been subjected to various attacks, regardless of the applied protection mechanisms due to the…

Cryptography and Security · Computer Science 2021-07-02 Anna Angelogianni , Ilias Politis , Christos Xenakis

FIDO2 and the WebAuthn standard offer phishing-resistant, public-key based authentication but traditionally rely on device-bound cryptographic keys that are not naturally portable across user devices. Recent passkey deployments address this…

Cryptography and Security · Computer Science 2026-01-13 Kemal Bicakci , Fatih Mehmet Varli , Muhammet Emir Korkmaz , Yusuf Uzunay

With challenges and limitations associated with security in the fintech industry, the rise to the need for data protection increases. However, the current existing passwordless and password-based peer to peer transactions in online banking…

Cryptography and Security · Computer Science 2024-08-12 Anisha Ghosh , Aditya Mitra , Sibi Chakkaravarthy Sethuraman , Aswani Kumar Cherukuri

This paper presents a timing attack on the FIDO2 (Fast IDentity Online) authentication protocol that allows attackers to link user accounts stored in vulnerable authenticators, a serious privacy concern. FIDO2 is a new standard specified by…

Cryptography and Security · Computer Science 2022-05-18 Michal Kepkowski , Lucjan Hanzlik , Ian Wood , Mohamed Ali Kaafar

With the rise of sophisticated authentication bypass techniques, passwords are no longer considered a reliable method for securing authentication systems. In recent years, new authentication technologies have shifted from traditional…

Cryptography and Security · Computer Science 2025-08-19 Lien Tran , Boyuan Zhang , Ratchanon Pawanja , Rashid Hussain Khokhar

Single sign-on (SSO) systems, such as OpenID and OAuth, allow web sites, so-called relying parties (RPs), to delegate user authentication to identity providers (IdPs), such as Facebook or Google. These systems are very popular, as they…

Cryptography and Security · Computer Science 2015-08-10 Daniel Fett , Ralf Kuesters , Guido Schmitz

Authentication with username and password is becoming an inconvenient process for the user. End users typically have little control over their personal privacy, and data breaches effecting millions of users have already happened several…

Distributed, Parallel, and Cluster Computing · Computer Science 2020-06-09 Zoltán András Lux , Dirk Thatmann , Sebastian Zickau , Felix Beierle

Most of the security services in the connected world of cyber-physical systems necessitate authenticating a large number of nodes privately. In this paper, the private authentication problem is considered which consists of a certificate…

Information Theory · Computer Science 2022-09-13 Narges Kazempour , Mahtab Mirmohseni , Mohammad Reza Aref

Single sign-on (SSO) allows a user to maintain only the credential for an identity provider (IdP) to log into multiple relying parties (RPs). However, SSO introduces privacy threats, as (a) a curious IdP could track a user's all visits to…

Cryptography and Security · Computer Science 2025-03-27 Chengqian Guo , Jingqiang Lin , Quanwei Cai , Wei Wang , Wentian Zhu , Jiwu Jing , Qiongxiao Wang , Bin Zhao , Fengjun Li

Security systems demand continuous, cryptograph- ically robust identity verification without requiring subjects to carry physical tokens, smart cards, or dedicated hardware authenticators. This paper presents BIDO (Biometric Identity…

Emerging Technologies · Computer Science 2026-05-19 Aditya Mithra , Sibi Chakkaravarthy S , Srinivas Kankanala

Threats to passwords are still very relevant due to attacks like phishing or credential stuffing. One way to solve this problem is to remove passwords completely. User studies on passwordless FIDO2 authentication using security tokens…

Cryptography and Security · Computer Science 2021-05-27 Johannes Kunke , Stephan Wiefling , Markus Ullmann , Luigi Lo Iacono
‹ Prev 1 2 3 10 Next ›