DocumentCode
3722519
Title
QRToken: Unifying Authentication Framework to Protect User Online Identity
Author
Fei Xu;Sheng Han;Ying Wang;Jian Zhang;Yong Li
Author_Institution
Beijing Stonete Sci. &
fYear
2015
Firstpage
368
Lastpage
373
Abstract
This paper proposes an asymmetric key based authentication framework, QRToken, for easy - to - use login to websites, SSH servers, etc., QRToken authentication use client - side locally stored RSA private key to encrypt identification information as well as other parameters, and prese nt a QR code in the form of a small two - dimensional picture that encodes the encrypted information. User takes a picture of the QR code with the cell phone camera and sends it as a cryptographic response to the server to complete the authentication process. We believe the simple act of scanning QR code for authentication brings ease in management and enhances user experience. Our framework supports QRToken both as a software application and as a hardware device. It can also be made available to every websit e with our SDK package installed, due to the use of asymmetric - key mechanism. We also illustrate how to combine both software and hardware based approach as a two - factor authentication mechanism to further strengthen security.
Keywords
"Authentication","Servers","Public key","Software","Hardware"
Publisher
ieee
Conference_Titel
Cyber Security and Cloud Computing (CSCloud), 2015 IEEE 2nd International Conference on
Type
conf
DOI
10.1109/CSCloud.2015.24
Filename
7371509
Link To Document