Sciweavers

Share
CCS
2015
ACM

TrustOTP: Transforming Smartphones into Secure One-Time Password Tokens

3 years 7 months ago
TrustOTP: Transforming Smartphones into Secure One-Time Password Tokens
Two-factor authentication has been widely used due to the vulnerabilities associated with traditional text-based password. One-time password (OTP) plays an indispensable role on authenticating mobile users to critical web services that demand a high level of security. As the smartphones are increasingly gaining popularity nowadays, software-based OTP generators have been developed and installed into smartphones as software apps, which bring great convenience to the users without introducing extra burden. However, software-based OTP solutions cannot guarantee the confidentiality of the generated passwords or even the seeds when the mobile OS is compromised. Moreover, they also suffer from denial-of-service attacks when the mobile OS crashes. Hardware-based OTP tokens can solve these security problems in the software-based OTP solutions; however, it is inconvenient for the users to carry physical tokens with them, particularly, when there are more than one token to be carried. In this...
He Sun, Kun Sun, Yuewu Wang, Jiwu Jing
Added 17 Apr 2016
Updated 17 Apr 2016
Type Journal
Year 2015
Where CCS
Authors He Sun, Kun Sun, Yuewu Wang, Jiwu Jing
Comments (0)
books