Enhance Multi-factor Authentication Model for Intelligence Community Access to Critical Surveillance Data

Muhamad, Wan Nurhidayat Wan; Razali, Noor Afiza Mat; Ishak, Khairul Khalil; Hasbullah, Nor Asiakin; Zainudin, Norulzahrah Mohd; Ramli, Suzaimah; Wook, Muslihah; Ishak, Zurida; MSaad, Nurjannatul Jannah Aqilah

doi:10.1007/978-3-030-34032-2_49

Cited by 4 publications

(7 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The intelligence community could be any government agencies and organisation involved in the management of intelligence environment for the benefit of the country. Besides, the private sector also plays a crucial role in handling intelligence-related projects or systems with intelligence agencies [1].…”

Section: Intelligence Communitymentioning

confidence: 99%

“…Information sharing in a community becomes easier with the assistance of technology. The intelligence community also benefitted from this technology advancement by shifting its technique of gathering data from traditional Human Intelligence (HUMINT) to a more sophisticated and advanced method of Signal Intelligence (SIGINT) [1]. Information or data collected at the intelligence centre are varied and could be derived from devices and sensors.…”

Section: Introductionmentioning

confidence: 99%

“…There is no doubt that the risk of handling such clandestine and important intelligence data is excessive. Leaked or breached intelligence data could deadly affect country sovereignty which also significantly affect the civilian community such as politics, cultural, economy or even lives [1], [5].…”

Section: Introductionmentioning

confidence: 99%

“…Hence, past studies suggested the implementation of access control to heighten data security. As an example, multi-factor authentication technique [1]. However, in this pervasive usage and advancement of the Internet, such authentication technique is insufficient [7], [8].…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Evaluation of Blockchain-based Data Sharing Acceptance among Intelligence Community

Muhamad¹,

Razali²,

Wook³

et al. 2020

IJACSA

Self Cite

View full text Add to dashboard Cite

Section: Intelligence Communitymentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Evaluation of Blockchain-based Data Sharing Acceptance among Intelligence Community

Muhamad¹,

Razali²,

Wook³

et al. 2020

IJACSA

Self Cite

View full text Add to dashboard Cite

“…OTP is an additive system that requires a new key to be entered by the user every time along with the user name and password. OTP was initially called a One Time Authorization Code (OTAC) [7]. It is a dynamic password that remains valid for a certain amount of time or till the successful login within a session.…”

Section: Introductionmentioning

confidence: 99%

Secured 6-Digit OTP Generation using B-Exponential Chaotic Map

Naik¹,

Singh²

2021

IJACSA

View full text Add to dashboard Cite

Today, the traditional username and password systems are becoming less popular on the internet due to their vulnerabilities. These systems are prone to replay attacks and eavesdropping. During the Coronavirus pandemic, most of the important transactions take place online. Hence we require a more secure method like one-time password generation to avoid any online frauds. one-time password generation has multiple techniques. With one-time password generation it has become possible to overcome the drawbacks posed by the traditional username and password systems. The one-time password is a two-way authentication technique and hence secure one-time password generation is very important. The current method of one-time password generation is time-consuming and consumes a lot of memory on backend servers. The 4-digit one-time password system limits its uses to 9999 users and with advance deep learning approaches and faster computing it is possible to break through the existing one-time password generation method. Hence we need a system that is not vulnerable to predictive learning algorithms. We propose a 6-digit one-time password generation technique based on a B-exponential chaotic map. The proposed 24-bit (6-digit) long one-time password system offers 120 times higher security as compared traditional 4-digit systems, with a faster backend computing system that selects 24-bits out of 10 8 bits in 89 seconds at 1.09 Kilo-bits per milliseconds. The proposed method can be used for online transactions, online banking, and even automated teller machines.

show abstract

Usability of the login authentication process: passphrases and passwords

Bhana

Flowerday

2021

ICS

View full text Add to dashboard Cite

Purpose The average employee spends a total of 18.6 h every two months on password-related activities, including password retries and resets. The problem is caused by the user forgetting or mistyping the password (usually because of character switching). The source of this issue is that while a password containing combinations of lowercase characters, uppercase characters, digits and special characters (LUDS) offers a reasonable level of security, it is complex to type and/or memorise, which prolongs the user authentication process. This results in much time being spent for no benefit (as perceived by users), as the user authentication process is merely a prerequisite for whatever a user intends to accomplish. This study aims to address this issue, passphrases that exclude the LUDS guidelines are proposed. Design/methodology/approach To discover constructs that create security and to investigate usability concerns relating to the memory and typing issues concerning passphrases, this study was guided by three theories as follows: Shannon’s entropy theory was used to assess security, chunking theory to analyse memory issues and the keystroke level model to assess typing issues. These three constructs were then evaluated against passwords and passphrases to determine whether passphrases better address the security and usability issues related to text-based user authentication. A content analysis was performed to identify common password compositions currently used. A login assessment experiment was used to collect data on user authentication and user – system interaction with passwords and passphrases in line with the constructs that have an impact on user authentication issues related to security, memory and typing. User–system interaction data was collected from a purposeful sample size of 112 participants, logging in at least once a day for 10 days. An expert review, which comprised usability and security experts with specific years of industry and/or academic experience, was also used to validate results and conclusions. All the experts were given questions and content to ensure sufficient context was provided and relevant feedback was obtained. A pilot study involving 10 participants (experts in security and/or usability) was performed on the login assessment website and the content was given to the experts beforehand. Both the website and the expert review content was refined after feedback was received from the pilot study. Findings It was concluded that, overall, passphrases better support the user during the user authentication process in terms of security, memory issues and typing issues. Originality/value This research aims at promoting the use of a specific type of passphrase instead of complex passwords. Three core aspects need to be assessed in conjunction with each other (security, memorisation and typing) to determine whether user-friendly passphrases can support user authentication better than passwords.

show abstract

Enhance Multi-factor Authentication Model for Intelligence Community Access to Critical Surveillance Data

Cited by 4 publications

References 22 publications

Evaluation of Blockchain-based Data Sharing Acceptance among Intelligence Community

Evaluation of Blockchain-based Data Sharing Acceptance among Intelligence Community

Secured 6-Digit OTP Generation using B-Exponential Chaotic Map

Usability of the login authentication process: passphrases and passwords

Contact Info

Product

Resources

About