Using Combined One-Time Password for Prevention of Phishing Attacks

Phishing attacks are increasingly exploited by cybercriminals, they become more sophisticated and evade detection even by advanced technical countermeasures. With cybercriminals resorting to more sophisticated phishing techniques, strategies, and different channels such as social networks, phishing is becoming a hard problem to solve. Therefore, the main objective for any anti-phishing solution is to minimize phishing success and its consequences through complementary means to advanced technical countermeasures. Specifically, phishing threats cannot be controlled by technical controls alone, thus it is imperative to complement cybersecurity programs with cybersecurity awareness programs to successfully fight against phishing attacks. This paper provides a review of the delivery methods of cybersecurity training programs used to enhance personnel security awareness and behavior in terms of phishing threats. Although there are a wide variety of educational intervention methods against phishing, the differences between the cybersecurity awareness delivery methods are not always clear. To this end, we present a review of the most common methods of workforce cybersecurity training methods in order for them to be able to protect themselves from phishing threats.

Section: Phishing Threat Challengesmentioning

confidence: 99%

Anti-Phishing Awareness Delivery Methods

Darem

2021

“…Other stakeholders, including veterinarians, have the privilege to register livestock keepers in the system. Apart from livestock keepers, different stakeholders may access the system by using their username and password on the login page (Figure 8) [22,23]. The system administrator registers stakeholders by asigning the username and a temporal password that must be changed the first time the user logins into the system.…”

Section: System Securitymentioning

confidence: 99%

A Monitoring System for Transboundary Foot and Mouth Disease (FMD) considering the Demographic Characteristics in Gairo, Tanzania

Kijazi

Kisangiri

Kaijage

et al. 2021

Foot and Mouth Disease (FMD) is present in many countries, including Tanzania. Gairo is among the districts that frequently face FMD. This study found that the current mechanism for communicating FMD in Gairo district suffers from a long chain of information flow that causes delay and insufficient information for FMD control. Therefore, this study aimed to explore the implementation of an information system named "Monitoring System for Transboundary Foot and Mouth Disease," developed purposely to provide a standard platform for communicating FMD between livestock keepers and other stakeholders in the district. The system enables timely sharing of FMD events such as outbreaks, precaution measures, clinical signs, and negative impacts using Short Message Services (SMS), Unstructured Supplementary Service Data (USSD), and Voice Calls (robo-calls) through the mobile phones. Also, livestock keepers may report FMD outbreaks direct to the system using feature phones. The Statistical Package for Social Sciences (SPSS) was used to analyze data and Microsoft Visio was used for drawing the system architecture and information flow diagram. Finally, the system was implemented using PHP hypertext processor, JQuery, HTML, JSON, JavaScript, MySQL, and Apache webserver.

“…In these systems passwords are involved with the processing of images. [15][16][17] Users can enter and select from the images which makes it easier than to remember passwords [18]. Besides the user point of view, graphical passwords also provide a better security against attacks.…”

Section: Introductionmentioning

confidence: 99%

AcSIS: Authentication System Based on Image Splicing

Hamid

Bawany

Khan

2019

Text-based passwords are widely used for the authentication of digital assets. Typically, password security and usability is a trade-off, i.e. easy-to-remember passwords have higher usability that makes them vulnerable to brute-force and dictionary attacks. Complex passwords have stronger security but poor usability. In order to strengthen the security in conjunction with the improved usability, we hereby propose a novel graphical authentication system. This system is a picture-based password scheme which comprises of the method of image splicing. Authentication data were collected from 33 different users. The usability of the method was evaluated via a comparison between the number of correct and incorrect authentication attempts and time taken. Additionally, a comparison was made between our proposed method and a complex text-based password authentication method using the authentication success rate. Authentication using image splicing proved to be resilient to brute-force attacks since the processing of images consumes a voluminous password space. The evaluation of the usability revealed that graphical passwords were easy-to-remember, resulting in a higher number of correct attempts. The proposed method produced 50% higher success rate compared to the text-based method. Findings motivate the use of the proposed method for securing digital assets.