Architecture of Context-Risk-Aware Authentication System for Web Environments
Proceeding: Third International Conference on Informatics Engineering and Information Science (ICIEIS2014) (ICIEIS)Publication Date: 2014-09-22
Authors : Adam Hurkala; Jaroslaw Hurkala;
Page : 219-228
Keywords : context-risk-aware authentication; multifactor authentication; authentication with risk management; usability of authentication systems; information security;
Abstract
This paper reports our ongoing work to design a Context-Risk-Aware Authentication System for Web environments. In our approach of password-based authentication we use additional authentication data to assess the probability that user's identity is authentic. Requested user data includes a standard login-password combination and other authentication characteristics that can be established during authentication request. The additional information about user is used to detect suspicious authentication requests, in which case user is asked to present additional proof of identity. In this paper we describe the motivation for, and the design of the Context-Risk-Aware Authentication System, explain security threats and risk factors.
Other Latest Articles
- Insider Threats for File Sharing: Characterising File Sharing and its Protection
- Analysis of High Frequency Interferences at Wireless Communication Antennas
- The Use of the Semantic Approach to the Organization of Banking Information Systems on an Example of Lending
- An Agent Based Formal Specification Language Processor
- Issues and Challenges of Secure Policy Specification Languages
Last modified: 2014-09-24 21:37:16