WiFiOTP: Pervasive two-factor authentication using Wi-Fi SSID broadcasts

Huseynov, Emm; Seigneur, Jean-Marc

doi:10.1109/kaleidoscope.2015.7383630

Cited by 7 publications

(4 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Besar kemungkinan adanya pencurian data yang dilakukan oleh orang yang tidak bertanggung jawab terhadap perangkat lain yang terkoneksi dalam jaringan tersebut (Huseynov & Seigneur, 2016). Dengan hal tersebut maka penelitian ini membangun teknik keamanan yang dapat meningkatkan kerahasiaan kata sandi pada password wifi yang statis menjadi password wifi yang dapat mengubah secara dinamis untuk meminimalisir pencurian data dengan menggunakan algoritma TOTP SHA-3.…”

Section: Pendahuluanunclassified

Tempat Sampah Pengelola Password Wifi dengan Algoritma TOTP SHA-3

2021

View full text Add to dashboard Cite

AbstrakAlgoritma Time-Based One Time Password (TOTP) merupakan algoritma yang berfungsi menghasilkan password untuk satu kali pemakaian. Password yang dihasilkan memiliki batas waktu tertentu dan akan selalu berubah secara dinamis dalam periode tertentu. Algoritma TOTP menggabungkan secret key dengan current time yang kemudian dilakukan hashing menggunakan algoritma enkripsi SHA-3. Pada penelitian ini TOTP diaplikasikan untuk pengelolaan password wifi pada media tempat sampah dimana keterkaitan user dan kebutuhan mengakses wifi. TOTP akan menghasilkan password wifi untuk user jika user melakukan kegiatan membuang sampah pada media tempat sampah. Pada secret key dilakukan enkripsi menggunakan algoritma caesar terlebih dahulu sebelum dilakukan tahap hashing, ini agar membuat secret key dinamis sehingga variasi password menjadi lebih banyak dan dapat meningkatkan keamanan dari password. Dari hasil pengujian keluaran password tidak muncul secara berulang namun memiliki tingkat kemiripan sebesar 0,02%.Kata kunci: Internet Of Thing, TOTP, SHA-3, Tempat sampah AbstractThe Time-Based One Time Password (TOTP) algorithm is an algorithm that produces a password for only one use. A password that is produced has a limited time and always changed dynamically in a specific period. The TOTP algorithm combines a secret key with a current time which is then hased with an encryption algorithm SHA-3. In this experiment the TOTP is applied for managing a wifi password for a user, when the user is throwing a trash at a particular bin. The secret key will be encrypted used a caesar algorithm before the hashing process, so that a secret key become dynamic and the password multiplied, and the security level will be higher. In this experiment the password output has not produced periodically but has a 0.02% similliarity.Keywords: Internet Of Thing, TOTP, SHA-3,Trashbin

show abstract

Section: Pendahuluanunclassified

Tempat Sampah Pengelola Password Wifi dengan Algoritma TOTP SHA-3

2021

View full text Add to dashboard Cite

show abstract

“…Google authenticator uses hash of the known and shared secret key between the server and the mobile application to generate the one time password. This method has a similar drawback to that of sms based as device can also be misplaced and the user needs to type in google authentication password which may not be convenient for the users [12]. The OTP expiration is between 1 minute to an hour depending on the service provider.…”

Section: A Existing Location Determining Mechanismsmentioning

confidence: 99%

“…ZIA can be vulnerable to replay attack because it makes use of some constant network component such as MAC address. It can also be stolen, granting the unauthorized user unfettered access to the terminal [12].…”

Section: A Existing Location Determining Mechanismsmentioning

confidence: 99%

See 1 more Smart Citation

Application of Geo-Location-Based Access Control in an Enterprise Environment

Yisa¹,

Meshach²,

Osho³

et al. 2018

IJCNIS

View full text Add to dashboard Cite

Abstract-Unauthorized Access has been difficult to stop or prevent in the last few decades using username and password authentication only. For an individual, data breach might just be a simple case of espionage or the loss of private credentials, for an enterprise, this could mean the loss of billions of dollars. Preventing Unauthorized Access to Enterprise Systems Using a Location-based Logical Access Control proposes a framework that uses time and location in preventing and defending against data breaches. The framework was developed using Java with an Eclipse IDE. The database was designed using MySQL and locations were collected using Google Maps API. Users registered at different locations in a university campus were unable to access another's account in the database because they were both outside the known location and tried to do this at offwork hours. Users were registered with username and password at specified locations. The users are then made to login from same and different locations with correct username and passwords. it was discovered that access to the database was only given when the username and password was correct and location was same as at registered or as allowed by an administrator. The system was found to protect against unauthorized access arising from stolen login credentials and unauthorized remote logins from malicious users.

show abstract