Enhancing anti-phishing by a robust multi-level authentication technique (EARMAT)
المؤلفون المشاركون
Abu Hassan, Abd al-Munim
Yasin, Adwan
المصدر
The International Arab Journal of Information Technology
العدد
المجلد 15، العدد 6 (30 نوفمبر/تشرين الثاني 2018)11ص.
الناشر
تاريخ النشر
2018-11-30
دولة النشر
الأردن
عدد الصفحات
11
التخصصات الرئيسية
تكنولوجيا المعلومات وعلم الحاسوب
الملخص EN
Phishing is a kind of social engineering attack in which experienced persons or entities fool novice users to share their sensitive information such as usernames, passwords, credit card numbers, etc.
through spoofed emails, spams, and Trojan hosts.
The proposed scheme based on designing a secure two factor authentication web application that prevents phishing attacks instead of relying on the phishing detection methods and user experience.
The proposed method guarantees that authenticating users to services, such as online banking or e-commerce websites, is done in a very secure manner.
The proposed system involves using a mobile phone as a software token that plays the role of a second factor in the user authentication process, the web application generates a session based onetime password and delivers it securely to the mobile application after notifying him through Google Cloud Messaging (GCM) service, then the user mobile software will complete the authentication process – after user confirmation- by encrypting the received onetime password with its own private key and sends it back to the server in a secure and transparent to the user mechanism.
Once the server decrypts the received onetime password and mutually authenticates the client, it automatically authenticates the user’s web session.
We implemented a prototype system of our authentication protocol that consists of an Android application, a Java-based web server and a GCM connectivity for both of them.
Our evaluation results indicate the viability of the authentication protocol to secure the web applications authentication against various types of threats
نمط استشهاد جمعية علماء النفس الأمريكية (APA)
Yasin, Adwan& Abu Hassan, Abd al-Munim. 2018. Enhancing anti-phishing by a robust multi-level authentication technique (EARMAT). The International Arab Journal of Information Technology،Vol. 15, no. 6.
https://search.emarefa.net/detail/BIM-874027
نمط استشهاد الجمعية الأمريكية للغات الحديثة (MLA)
Yasin, Adwan& Abu Hassan, Abd al-Munim. Enhancing anti-phishing by a robust multi-level authentication technique (EARMAT). The International Arab Journal of Information Technology Vol. 15, no. 6 (Nov. 2018).
https://search.emarefa.net/detail/BIM-874027
نمط استشهاد الجمعية الطبية الأمريكية (AMA)
Yasin, Adwan& Abu Hassan, Abd al-Munim. Enhancing anti-phishing by a robust multi-level authentication technique (EARMAT). The International Arab Journal of Information Technology. 2018. Vol. 15, no. 6.
https://search.emarefa.net/detail/BIM-874027
نوع البيانات
مقالات
لغة النص
الإنجليزية
الملاحظات
Includes bibliographical references
رقم السجل
BIM-874027
قاعدة معامل التأثير والاستشهادات المرجعية العربي "ارسيف Arcif"
أضخم قاعدة بيانات عربية للاستشهادات المرجعية للمجلات العلمية المحكمة الصادرة في العالم العربي
تقوم هذه الخدمة بالتحقق من التشابه أو الانتحال في الأبحاث والمقالات العلمية والأطروحات الجامعية والكتب والأبحاث باللغة العربية، وتحديد درجة التشابه أو أصالة الأعمال البحثية وحماية ملكيتها الفكرية. تعرف اكثر