Rania Molla
Mobile User Authentication System for E-commerce Applications.
Molla, Rania; Romdhani, Imed; Buchanan, William J; Fadel, Etimad Y
Authors
Dr Imed Romdhani I.Romdhani@napier.ac.uk
Associate Professor
Prof Bill Buchanan B.Buchanan@napier.ac.uk
Professor
Etimad Y Fadel
Abstract
E-commerce applications provide on-line clients and merchants with a quick and convenient way to exchange goods and services. However, the deployment of these applications is still facing many problems such as security threats; and on-line attacks. These often cause users to be concerned about their own privacy and encourage them to stop using on-line methods. Thus, a number of on-line authentication technologies and methods have been developed in order to authenticate users and merchants, verify their identities, and therefore overcome e-commerce security threats. Although
stand-alone authentication solutions have been successful in
authenticating legitimate clients and in defeating on-line attacks,
they are often weak in overcoming the Man-In-The-Browser
(MITB) attack, which is a type of Internet threat that infects a
web-browser in a concealed fashion, and is invisible to both client
and host applications. This paper presents a Mobile User
Authentication System (MUAS) that uses QR code technology to
authenticate on-line users, through a challenge/response protocol.
Based on this mechanism, the system integrates different
authentication technologies and methods to provide an improved
and secure on-line user and merchant authentication system that
overcomes MITB attack, without compromising usability and
ubiquity.
Citation
Molla, R., Romdhani, I., Buchanan, W. J., & Fadel, E. Y. (2014, June). Mobile User Authentication System for E-commerce Applications. Paper presented at International Conference on Advanced Networking, Distributed Systems and Applications 2014
| Presentation Conference Type | Conference Paper (unpublished) |
|---|---|
| Conference Name | International Conference on Advanced Networking, Distributed Systems and Applications 2014 |
| Start Date | Jun 17, 2014 |
| End Date | Jun 19, 2014 |
| Publication Date | 2014 |
| Deposit Date | Apr 24, 2014 |
| Publicly Available Date | May 16, 2017 |
| Publisher | Institute of Electrical and Electronics Engineers |
| Peer Reviewed | Peer Reviewed |
| Book Title | International Conference on Advanced Networking, Distributed Systems and Applications 2014 |
| Keywords | Authentication; Man-In-The-Browser attack(MITB); QR code; Out-Of-Band communication channel (OOB). |
| Public URL | http://researchrepository.napier.ac.uk/id/eprint/6850 |
| Contract Date | May 16, 2017 |
Files
Mobile User Authentication System for E-commerce Applications.
(490 Kb)
PDF
You might also like
Password Pattern and Vulnerability Analysis for Web and Mobile Applications
(2016)
Journal Article
A Loosely-coupled Semantic Model for Efficient Cloud Service Search and Retrieval.
(2015)
Presentation / Conference Contribution