PhishPreventer: A Secure Authentication Protocol for Prevention of Phishing Attacks in Mobile Environment with Formal Verification

Bojjagani, Sriramulu; Brabin, D. R. Denslin; Rao, P. V. Venkateswara

doi:10.1016/j.procs.2020.04.119

Cited by 21 publications

(7 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Sensitive client information is always protected from all types of assault, including phishing and man-in-the-middle attacks. Due to the present mobile authentication mechanisms, it is more difficult for users with mobile devices to recognise and prevent phishing attacks [11]. A mobile app prototype for e-voting with three levels of security has been created.…”

Section: Resultsmentioning

confidence: 99%

“…Attackers no longer bombard and spam users; instead, they use open-source intelligence (OSNT) technologies in conjunction with Internet sources to obtain minimal but required data on a target without their knowledge or consent [10]. Since phishing attacks do not contain any dangerous executable payload or malware, e-mail servers running antispam or phishing security programmes can struggle to identify phishing attempts [11].…”

Section: Mobile App Architecturementioning

confidence: 99%

See 1 more Smart Citation

Development of an Efficient and Secured E-Voting Mobile Application Using Android

Sherine

Peter²,

Stonier³

et al. 2022

Mobile Information Systems

View full text Add to dashboard Cite

Smart technologies, particularly the development of the Internet, are employed to enhance the quality of human existence. Thanks to the Internet’s explosive expansion, more and more tasks can now be completed quickly and easily compared to the earlier times. E-voting is a relatively recent field that has been identified. Voting can be conducted in a variety of methods, including in person at a polling place, online, and via a mobile application. The security of applications cannot be disregarded given the internet’s explosive growth. In order to prevent phishing attacks, we created an Android application and included a 3-step security process before voting. Students can now vote online from any location at any time using a mobile device. Android Studio is used to create and deploy the application. While creating the voting application, this research adheres to the software development life cycle. The result of this research is the creation of a mobile application that is user-friendly for students and serves as a practical tool for letting them vote with three levels of security.

show abstract

Section: Resultsmentioning

confidence: 99%

Section: Mobile App Architecturementioning

confidence: 99%

Development of an Efficient and Secured E-Voting Mobile Application Using Android

Sherine

Peter²,

Stonier³

et al. 2022

Mobile Information Systems

View full text Add to dashboard Cite

show abstract

“…The proposed scheme resists phishing attacks. Phishing attacks come in the form of fraudulent email messages that appear to have been sent by legitimate enterprises to access private information and to commit identity theft [22]. Proof.…”

Section: Security Analyses and Discussion On Possible Attacksmentioning

confidence: 99%

Towards for Designing Educational System Using Role-Based Access Control

2023

IJIES

View full text Add to dashboard Cite

During the COVID-19 pandemic, online electronic educational systems have been used in most schools and universities as they were forced to move their operations from classrooms to online settings. However, these systems face a serious security issue. Access control considers the core of data security for any implemented system. This paper presents the well-known role-based access control (RBAC) approach to enhance system security and improve user role and system privilege. This study also addresses the issues faced by extant schemes, such as security risk tolerance, by proposing a privacy-preserving educational system that utilizes RBAC and smart multifactor authentication. This approach uses an asymmetric cryptosystem based on the Elgamal digital signature operation to provide multi-factor authentication while relying on low-complexity cryptographic hash functions. RBAC manages system security via the "user classification, role authorization, and unified management" approach. By limiting the amount of data that users can access, RBAC is particularly suited for multi-level applications. This approach also uses informal analysis and the Scyther tool to conduct extensive formal security proofs. RBAC offers many benefits, including mutual authentication, identity anonymity, forward secrecy, key management, and high resistance to well-known attacks, such as phishing, replay, Man-In-The-Middle (MITM), and insider attacks. Compared with other schemes, RBAC offers more security features and boasts higher cost effectiveness in processing and communication. Furthermore, our work achieves a good balance between performance and security complexity when compared to the state-of-the-art. So, we get good results at a cost of 0.253 ms for computing and 1326 bits for communication.

show abstract

“…There is some research that has touched on how to make the transmission of instant messages secure, also most instant messaging applications have relied on the use of End-to-End Encryption, when the message is sent, the algorithm encrypts it directly so that it is transferred to the second party as an encrypted message. Some articles focus on analyzing the encryption protocol used by each of them, while applying the security features they provide, and through research it will give us the ability to choose a secure instant messaging service [3].…”

Section: Introductionmentioning

confidence: 99%

¬¬¬Instant Messaging Security: A Comprehensive Review of Behavior Patterns, Methodologies, and Security Protocols

R. AlMhanawi1,

M. Nema

2024

J. Al-Qadisiyah Comp. Sci. Math.

View full text Add to dashboard Cite

This review presents a comprehensive analysis of contemporary scholarship pertaining to instant messaging (IM) user behavior and security protocols. Through meticulous selection, the authors highlight critical studies that illuminate optimized message consumption strategies and delve into the evolving landscape of IM security models. Focusing on the past four years, the review meticulously dissects cutting-edge advancements in this domain. A significant insight emerges: achieving optimal communication security necessitates the synergistic convergence of three fundamental techniques: end-to-end encryption for data confidentiality, decentralized authentication for independent user verification, and zero-knowledge proof for identity obscurity. The review postulates that the simultaneous integration of these elements within the application architecture is paramount for robust privacy and heightened security in the realm of IM.

show abstract

PhishPreventer: A Secure Authentication Protocol for Prevention of Phishing Attacks in Mobile Environment with Formal Verification

Cited by 21 publications

References 16 publications

Development of an Efficient and Secured E-Voting Mobile Application Using Android

Development of an Efficient and Secured E-Voting Mobile Application Using Android

Towards for Designing Educational System Using Role-Based Access Control

¬¬¬Instant Messaging Security: A Comprehensive Review of Behavior Patterns, Methodologies, and Security Protocols

Contact Info

Product

Resources

About