DocumentCode
1825554
Title
Token-based authentication for smartphones
Author
Koschuch, Manuel ; Hudler, Matthias ; Eigner, Hubert ; Saffer, Zsolt
Author_Institution
Competence Centre for IT-Security, Univ. of Appl. Sci., Vienna, Austria
fYear
2013
fDate
29-31 July 2013
Firstpage
1
Lastpage
6
Abstract
Due to short - but frequent - sessions of smartphone usage, the fast and easy usability of authentication mechanisms in this special environment has a big impact on user acceptance. In this work we propose a user-friendly alternative to common authentication methods (like PINs and patterns). The advantages of the proposed method are its security, fastness, and easy usage, requiring minimal user interaction compared to other authentication techniques currently used on smartphones. The mechanism described uses the presence of a Bluetooth-connected hardware-token to authenticate the user and can easily be implemented on current smartphones. It is based on an authentication protocol which meets the requirements on energy efficiency and limited resources by optimizing the communication effort. A prototype was implemented on an Android smartphone and an MSP430 based MCU. The token allows fast authentication without the need for additional user action. The entire authentication process can be completed in less than one second, the developed software prototype requires no soft- or hardware modifications (like rooting) of the Android phone.
Keywords
Bluetooth; cryptographic protocols; smart phones; Android smartphone; Bluetooth-connected hardware-token; MSP430 based MCU; authentication protocol; common authentication methods; energy efficiency; token-based authentication; user interaction; Authentication; Hardware; Protocols; Prototypes; Smart phones; Authentication; Challenge-response; Security; Smartphone; Token; Usability;
fLanguage
English
Publisher
ieee
Conference_Titel
Data Communication Networking (DCNET), 2013 International Conference on
Conference_Location
Reykjavik
Type
conf
Filename
7220057
Link To Document