A Study on Providing the Reliable and Secure SMS Authentication Service

The conventional SMS authentication using a mobile phone is no longer a secure means of authentication. This is because the security of mobile phones and smartphones is under threats by malicious code and applications, to be precise, SMS authentication is not multi-channel authentication. Since this unsafe SMS authentication method using a mobile phone is used as a means to verify the identity such as in the login and subscriber confirmation, as well as in the payment system including micro payment, it needs to be changed to a safer and better method. This paper will analyze the problems of the conventional SMS authentication method, and present a secure SMS authentication method using a mobile phone. In the proposed method, the secure authentication is made possible through adding two steps, first, a user recognizes and verifies the SMS on arrival, and then the user confirms again after the initial authentication. In other words, the proposed method provides advantages including the features for mutual authentication and non-repudiation, has a secure means of multi-channel authentication, and can be safely used in the payment system such as in the micro payment.