A Systematic Survey of Multi-Factor Authentication for Cloud Infrastructure

Otta, Soumya Prakash; Panda, Subhrakanta; Gupta, Maanak; Hota, Chittaranjan

doi:10.3390/fi15040146

Cited by 12 publications

(2 citation statements)

References 75 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Security analysis can be used to assess the security of MFA implementations in cloud computing environments [93]. This analysis can help to identify and mitigate any potential security risks.…”

Section: Develop Mfamentioning

confidence: 99%

Strengthening Cloud Security: An Innovative Multi-Factor Multi-Layer Authentication Framework for Cloud User Authentication

Mostafa,

Ezz,

Elbashir

et al. 2023

Applied Sciences

View full text Add to dashboard Cite

Cloud multi-factor authentication is a critical security measure that helps strengthen cloud security from unauthorized access and data breaches. Multi-factor authentication verifies that authentic cloud users are only authorized to access cloud apps, data, services, and resources, making it more secure for enterprises and less inconvenient for users. The number of authentication factors varies based on the security framework’s architecture and the required security level. Therefore, implementing a secured multi-factor authentication framework in a cloud platform is a challenging process. In this paper, we developed an adaptive multi-factor multi-layer authentication framework that embeds an access control and intrusion detection mechanisms with an automated selection of authentication methods. The core objective is to enhance a secured cloud platform with low false positive alarms that makes it more difficult for intruders to access the cloud system. To enhance the authentication mechanism and reduce false alarms, multiple authentication factors that include the length, validity, and value of the user factor is implemented with a user’s geolocation and user’s browser confirmation method that increase the identity verification of cloud users. An additional AES-based encryption component is applied to data, which are protected from being disclosed. The AES encryption mechanism is implemented to conceal the login information on the directory provider of the cloud. The proposed framework demonstrated excellent performance in identifying potentially malicious users and intruders, thereby effectively preventing any intentional attacks on the cloud services and data.

show abstract

Section: Develop Mfamentioning

confidence: 99%

Strengthening Cloud Security: An Innovative Multi-Factor Multi-Layer Authentication Framework for Cloud User Authentication

Mostafa,

Ezz,

Elbashir

et al. 2023

Applied Sciences

View full text Add to dashboard Cite

show abstract

“…They reported that most papers were published in 2019 and, by country, the US, India, and China produced the largest number of MFA-related papers. Additionally, in 2023, Otta et al [10] conducted a survey on various factors that can be used for authentication to avoid threatening cloud infrastructure and proposed a method for configuring safe and efficient MFA.…”

Section: Introductionmentioning

confidence: 99%

CNN-Based Multi-Factor Authentication System for Mobile Devices Using Faces and Passwords

Han

2024

Applied Sciences

View full text Add to dashboard Cite

Multi-factor authentication (MFA) is a system for authenticating an individual’s identity using two or more pieces of data (known as factors). The reason for using more than two factors is to further strengthen security through the use of additional data for identity authentication. Sequential MFA requires a number of steps to be followed in sequence for authentication; for example, with three factors, the system requires three authentication steps. In this case, to proceed with MFA using a deep learning approach, three artificial neural networks (ANNs) are needed. In contrast, in parallel MFA, the authentication steps are processed simultaneously. This means that processing is possible with only one ANN. A convolutional neural network (CNN) is a method for learning images through the use of convolutional layers, and researchers have proposed several systems for MFA using CNNs in which various modalities have been employed, such as images, handwritten text for authentication, and multi-image data for machine learning of facial emotion. This study proposes a CNN-based parallel MFA system that uses concatenation. The three factors used for learning are a face image, an image converted from a password, and a specific image designated by the user. In addition, a secure password image is created at different bit-positions, enabling the user to securely hide their password information. Furthermore, users designate a specific image other than their face as an auxiliary image, which could be a photo of their pet dog or favorite fruit, or an image of one of their possessions, such as a car. In this way, authentication is rendered possible through learning the three factors—that is, the face, password, and specific auxiliary image—using the CNN. The contribution that this study makes to the existing body of knowledge is demonstrating that the development of an MFA system using a lightweight, mobile, multi-factor CNN (MMCNN), which can even be used in mobile devices due to its low number of parameters, is possible. Furthermore, an algorithm that can securely transform a text password into an image is proposed, and it is demonstrated that the three considered factors have the same weight of information for authentication based on the false acceptance rate (FAR) values experimentally obtained with the proposed system.

show abstract

Auth4App: Streamlining authentication for integrated cyber–physical environments

Quincozes,

Mansilha,

Kreutz

et al. 2024

Journal of Information Security and Applications

View full text Add to dashboard Cite

A Systematic Survey of Multi-Factor Authentication for Cloud Infrastructure

Cited by 12 publications

References 75 publications

Strengthening Cloud Security: An Innovative Multi-Factor Multi-Layer Authentication Framework for Cloud User Authentication

Strengthening Cloud Security: An Innovative Multi-Factor Multi-Layer Authentication Framework for Cloud User Authentication

CNN-Based Multi-Factor Authentication System for Mobile Devices Using Faces and Passwords

Auth4App: Streamlining authentication for integrated cyber–physical environments

Contact Info

Product

Resources

About