A novel two-factor honeytoken authentication mechanism
Abstract
The majority of systems rely on user authentication on passwords, but passwords have so many weaknesses and widespread use that easily raise significant security concerns, regardless of their encrypted form. Users hold the same password for different accounts, administrators never check password files for flaws that might lead to a successful cracking, and the lack of a tight security policy regarding regular password replacement are a few problems that need to be addressed. The proposed research work aims at enhancing this security mechanism, prevent penetrations, password theft, and attempted break-ins towards securing computing systems. The selected solution approach is two-folded; it implements a two-factor authentication scheme to prevent unauthorized access, accompanied by Honeyword principles to detect corrupted or stolen tokens. Both can be integrated into any platform or web application with the use of QR codes and a mobile phone.
Document Type
Conference Proceeding
Date of Publication
2021
Volume
2021-July
Publication Title
2021 International Conference on Computer Communications and Networks (ICCCN)
Publisher
IEEE
School
School of Science
RAS ID
38763
Funders
European Union's Horizon 2020 research and innovation programme: CyberSec4Europe, and LOCARD
Copyright
subscription content
Comments
Papaspirou, V., Maglaras, L., Ferrag, M. A., Kantzavelou, I., Janicke, H., & Douligeris, C. (2021, July). A novel two-factor honeytoken authentication mechanism [Paper presentation]. 2021 International Conference on Computer Communications and Networks (ICCCN), Athens, Greece. https://doi.org/10.1109/ICCCN52240.2021.9522319