An Extensive Formal Analysis of Multi-factor Authentication Protocols

Jacomme, Charlie; Kremer, Steve

doi:10.1109/csf.2018.00008

Cited by 17 publications

(16 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Multi-factor authentication is a method that uses a combination of two or more authentications [7][8][9]. The conventional single authentication method involves security threats through the simple leakage of personal information or malicious hacking [10,11].…”

Section: Background and Related Work 21 Backgroundmentioning

confidence: 99%

Distributed Authentication Model for Secure Network Connectivity in Network Separation Technology

Park

et al. 2022

Sensors

View full text Add to dashboard Cite

Considering the increasing scale and severity of damage from recent cybersecurity incidents, the need for fundamental solutions to external security threats has increased. Hence, network separation technology has been designed to stop the leakage of information by separating business computing networks from the Internet. However, security accidents have been continuously occurring, owing to the degradation of data transmission latency performance between the networks, decreasing the convenience and usability of the work environment. In a conventional centralized network connection concept, a problem occurs because if either usability or security is strengthened, the other is weakened. In this study, we proposed a distributed authentication mechanism for secure network connectivity (DAM4SNC) technology in a distributed network environment that requires security and latency performance simultaneously to overcome the trade-off limitations of existing technology. By communicating with separated networks based on the authentication between distributed nodes, the inefficiency of conventional centralized network connection solutions is overcome. Moreover, the security is enhanced through periodic authentication of the distributed nodes and differentiation of the certification levels. As a result of the experiment, the relative efficiency of the proposed scheme (REP) was about 420% or more in all cases.

show abstract

Section: Background and Related Work 21 Backgroundmentioning

confidence: 99%

Distributed Authentication Model for Secure Network Connectivity in Network Separation Technology

Park

et al. 2022

Sensors

View full text Add to dashboard Cite

show abstract

“…In recent years, formal analysis has been widely applied to different types of protocol security analyses [1,2], including 5G authentication and key agreement (AKA) protocol [3,4], transport-layer security (TLS) version 1.3 [5,6], Signal Messaging Protocol [7], Secure Forwarding Protocols [8], and Multifactor Authentication Protocols [9]. eoretical research on the formal analysis is under way, and great progress has been made in observation equivalencies [10] and equality theory [11].…”

Section: Introductionmentioning

confidence: 99%

ESSM: Formal Analysis Framework for Protocol to Support Algebraic Operations and More Attack Capabilities

Miao

et al. 2021

Security and Communication Networks

View full text Add to dashboard Cite

The strand space model has been proposed as a formal method for verifying the security goals of cryptographic protocols. However, only encryption and decryption operations and hash functions are currently supported for the semantics of cryptographic primitives. Therefore, we establish the extended strand space model (ESSM) framework to describe algebraic operations and advanced threat models. Based on the ESSM, we add algebraic semantics, including the Abelian group and the XOR operation, and a threat model based on algebraic attacks, key-compromise impersonation attacks, and guess attacks. We implement our model using the automatic analysis tool, Scyther. We demonstrate the effectiveness of our framework by analysing several protocols, in particular a three-factor agreement protocol, with which we can identify new attacks while providing trace proofs.

show abstract

“…All of the mentioned techniques belong to distinct authentication factors. An authentication factor is a piece of information that can be used to verify the identity of a user [9]. There are three main groups or factors of authentication techniques [10,11]: (i) knowledge-based, that is, based on something that the user knows, such as text passwords; (ii) possession-based, that is, based on something that the user possesses, such as smart cards; and (iii) inherence-based, that is, something that the user is, such as biometrics.…”

Section: Introductionmentioning

confidence: 99%

Multifactor Authentication Methods: A Framework for Their Comparison and Selection

Velásquez¹,

Caro²,

Rodríguez³

2020

Computer and Network Security

View full text Add to dashboard Cite

There are multiple techniques for users to authenticate themselves in software applications, such as text passwords, smart cards, and biometrics. Two or more of these techniques can be combined to increase security, which is known as multifactor authentication. Systems commonly utilize authentication as part of their access control with the objective of protecting the information stored within them. However, the decision of what authentication technique to implement in a system is often taken by the software development team in charge of it. A poor decision during this step could lead to a fatal mistake in relation to security, creating the necessity for a method that systematizes this task. Thus, this book chapter presents a theoretical decision framework that tackles this issue by providing guidelines based on the evaluated application's characteristics and target context. These guidelines were defined through the application of an extensive action-research methodology in collaboration with experts from a multinational software development company.

show abstract

An Extensive Formal Analysis of Multi-factor Authentication Protocols

Cited by 17 publications

References 11 publications

Distributed Authentication Model for Secure Network Connectivity in Network Separation Technology

Distributed Authentication Model for Secure Network Connectivity in Network Separation Technology

ESSM: Formal Analysis Framework for Protocol to Support Algebraic Operations and More Attack Capabilities

Multifactor Authentication Methods: A Framework for Their Comparison and Selection

Contact Info

Product

Resources

About