Two-Thumbs-Up: Physical protection for PIN entry secure against recording attacks. Issue 78 (September 2018)
- Record Type:
- Journal Article
- Title:
- Two-Thumbs-Up: Physical protection for PIN entry secure against recording attacks. Issue 78 (September 2018)
- Main Title:
- Two-Thumbs-Up: Physical protection for PIN entry secure against recording attacks
- Authors:
- Nyang, DaeHun
Kim, Hyoungshick
Lee, Woojoo
Kang, Sung-bae
Cho, Geumhwan
Lee, Mun-Kyu
Mohaisen, Aziz - Abstract:
- Abstract: We present a new Personal Identification Number (PIN) entry method for smartphones that can be used in security-critical applications, such as smartphone banking. The proposed "Two-Thumbs-Up" (TTU) scheme is resilient against observation attacks such as shoulder-surfing and camera recording, and guides users to protect their PIN information from eavesdropping by shielding the challenge area on the touch screen. To demonstrate the feasibility of TTU, we conducted a user study for TTU, and compared it with existing authentication methods (Normal PIN, Black and White PIN, and ColorPIN) in terms of usability and security. The study results demonstrate that TTU is more secure than other PIN entry methods in the presence of an observer recording multiple authentication sessions.
- Is Part Of:
- Computers & security. Issue 78(2018)
- Journal:
- Computers & security
- Issue:
- Issue 78(2018)
- Issue Display:
- Volume 78, Issue 78 (2018)
- Year:
- 2018
- Volume:
- 78
- Issue:
- 78
- Issue Sort Value:
- 2018-0078-0078-0000
- Page Start:
- 1
- Page End:
- 15
- Publication Date:
- 2018-09
- Subjects:
- Authentication -- Personal Identification Number (PIN) -- Smartphone -- Recording attack -- Physical shielding -- User studies
Computer security -- Periodicals
Electronic data processing departments -- Security measures -- Periodicals
005.805 - Journal URLs:
- http://www.sciencedirect.com/science/journal/01674048 ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.cose.2018.05.012 ↗
- Languages:
- English
- ISSNs:
- 0167-4048
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 3394.781000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 10941.xml