Abstract
Nowadays, it is no longer uncommon for a PC to be infected with malware. User authentication based on only one legitimate credential (such as a password) may be insufficient for judging whether a user is legitimate. A typical solution to this problem is two-factor authentication, which is a method of authentication based on the presentation of two factors by the user. Generally, the first factor is input into a PC and the second into a smartphone. However, this reduces usability by forcing the user to present multiple factors at each authentication. Therefore, in this study, a method called multi-observed multi-factor authentication is proposed, whereby multi-factor authentication is performed to confirm that a human has input a legitimate credential by observing the user’s input of a single legitimate credential at multiple points.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Notes
- 1.
The exception is when a One-time password (OTP) is used as the second credential. For example, in [4], the user inputs the OTP sent to the smartphone from the authentication server to the authentication server via the PC, which constitutes two-factor authentication.
References
Kaspersky Emotet modules and recent attacks, SECURELIST, Kaspersky (online), 13 April 2022. https://securelist.com/emotet-modules-and-recent-attacks/106290/. Accessed 28 July 2022
Ometov, A., Bezzateev, S., Mäkitalo, N., Andreev, S., Mikkonen, T., Koucheryavy, Y.: Multi-factor authe ntication: a survey. Cryptography 2(1), 1–31 (2018). https://doi.org/10.3390/cryptography2010001
Microsoft: How it works: azure AD multi-factor authentication, Microsoft (online), 8 Feb 2022. https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-mfa-howitworks. Accessed 28 July 2022
Amazon: Adding MFA to a user pool, Amazon (online), 18 Nov 2021. https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-mfa.html. Accessed 23 Dec 2021
Bardram, J.E., Kjær, R.E., Pedersen, M.Ø.: Context-Aware User Authentication – Supporting Proximity-Based Login in Pervasive Computing. In: Dey, A.K., Schmidt, A., McCarthy, J.F. (eds.) UbiComp 2003: Ubiquitous Computing UbiComp 2003. Lecture Notes in Computer Science LNCS, vol. 2864, pp. 107–123. Springer, Heidelberg (2003). https://doi.org/10.1007/978-3-540-39653-6_8
Fathy, M.E., Patel, V.M., Chellappa, R.: Face-based active authentication on mobile devices. In: 2015 IEEE International Conference on Acoustics, Speech, and Signal Processing (ICASSP), pp. 1687–1691 (2015). https://doi.org/10.1109/ICASSP.2015.7178258
Singh, S., Inamdar, A., Kore, A., Pawar, A.: Analysis of algorithms for user authentication using keystroke dynamics. In: 2020 International Conference on Communication and Signal Processing (ICCSP), pp. 0337–0341 (2020). https://doi.org/10.1109/ICCSP48568.2020.9182115
Tietz, C., Klieme, E., Behrendt, L., Böning, P., Marschke, L., Meinel, C.: Verification of keyboard acoustics authentication on laptops and smartphones using WebRTC. In: 2019 3rd Cybersecurity in Networking Conference (CSNet), pp. 130–137 (2019). https://doi.org/10.1109/CSNet47905.2019.9108962.
Choi, B., Suh, T.: A security program to protect against keyboard-emulating BadUSB. J. Korea Inst. Inf. Secur. Cryptology 26(6), 1483–1492 (2016). https://doi.org/10.13089/JKIISC.2016.26.6.1483
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2022 The Author(s), under exclusive license to Springer Nature Switzerland AG
About this paper
Cite this paper
Nozaki, S. et al. (2022). Multi-observed Multi-factor Authentication: A Multi-factor Authentication Using Single Credential. In: Barolli, L., Miwa, H., Enokido, T. (eds) Advances in Network-Based Information Systems. NBiS 2022. Lecture Notes in Networks and Systems, vol 526. Springer, Cham. https://doi.org/10.1007/978-3-031-14314-4_20
Download citation
DOI: https://doi.org/10.1007/978-3-031-14314-4_20
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-031-14313-7
Online ISBN: 978-3-031-14314-4
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)