Authentication Techniques Research Articles

Analysis and Design of Efficient Authentication Techniques for Password Entry with the Qwerty Keyboard for VR Environments.

Authentication in digital security relies heavily on text-based passwords, even with other available methods like biometrics and graphical passwords. While virtual reality (VR) keyboards are typically invisible to onlookers, the presence of inconspicuous sensors, including accelerometers, gyroscopes, and barometers, poses a potential risk of unauthorized observation and recording. Traditional defense shoulder-surfing attack methods typically involve breaking apart the Qwerty layout, which destroys the user's inherent familiarity with the layout. This research addresses the need for secure password entry in VR environments while retaining the Qwerty layout. We explore three keyboard-related position alteration strategies to ensure security while mitigating the decline in user experience. These strategies involve moving the entire keyboard, cursor, and keys. Our theoretical study assesses the effectiveness of these strategies against shoulder-surfing attacks. Two user studies, employing ray-based and position-based text entry methods, respectively, evaluate the practical effectiveness of the three strategies in resisting shoulder-surfing attacks, as well as their impact on typing performance and user experience. Our findings demonstrate that the three strategies achieve shoulder-surfing attack resistance comparable to a random layout keyboard. Moreover, compared to a random layout, the two strategies involving the movement of the entire keyboard and the repositioning of keys support faster entry rates and enhanced user experience.

Enhancing smartphone security with human centric bimodal fallback authentication leveraging sensors.

Smartphones store valuable personal information, necessitating robust authentication methods to protect user data. This research proposes a lightweight bi-model fallback authentication technique that combines dynamic security questions and finger pattern recognition using inertial measurement units. The dynamic security questions are generated based on the smartphone's usage behavior, while the owner's finger movements are captured using four different inertial sensors: accelerometer, gyroscope, gravity sensor, and magnetometer. By combining the answers to the questions and the owner's finger movements, the user can be authenticated even if the primary authentication method fails. In this study, data was collected from 24 participants, including 12 primary phone users and 12 close adversaries, over a span of 28 days. The dynamic security questions, derived from call, SMS, battery charging events, application usage, location, and physical activity categories, achieved high accuracy rates, with call, SMS, and application usage surpassing . Incorporating the inertial measurement units significantly improved the accuracy of all question types, increasing from a maximum of to , while also enhancing the True Positive Rate from 0.79 to 0.99 compared to a previous study. This research presents a promising lightweight bi-model fallback authentication technique that leverages dynamic security questions and inertial measurement units data, demonstrating its effectiveness for enhancing smartphone security.

Performance Analysis of Authentication System: A Systematic Literature Review

Background: Data authentication is vital nowadays, as the development of the internet and its applications allow users to have all-time data availability, attracting attention towards security and privacy and leading to authenticating legitimate users. Methods: We have diversified means to gain access to our accounts, like passwords, biometrics, and smartcards, even by merging two or more techniques or various factors of authentication. This paper presents a systematic literature review of papers published from 2010 to 2022 and gives an overview of all authentication techniques available in the market. Results: Our study provides a comprehensive overview of all three authentication techniques with all performance metrics (Accuracy, Equal Error Rate (EER), False Acceptance Rate (FAR)), security, privacy, memory requirements, and usability (Acceptability by user)) that will help one choose a perfect authentication technique for an application. Conclusion: In addition, the study also explores the performance of multimodal and multifactor authentication and the application areas of authentication.

Physical unclonable functions and QKD-based authentication scheme for IoT devices using blockchain

As the number of Internet of Things (IoT) devices is increasing exponentially, strong security measures are needed to guard against different types of cyberattacks. This research offers a novel IoT device authentication technique to mitigate these challenges by integrating three cutting-edge technologies namely blockchain technology, Quantum Key Distribution (QKD), and Physically Unclonable Functions (PUFs). By utilizing the distinctive qualities of PUFs for device identification and the unrivaled security of QKD for key exchange, the proposed approach seeks to address the significant security issues present in IoT environments. Adopting blockchain technology ensures transparency and verifiability of the authentication process across distributed IoT networks by adding an unchangeable, decentralized layer of trust. An examination of the computing and communication costs reveals that the proposed protocol is effective, necessitating low computational resources that are critical for IoT devices with limited resources. The protocol’s resistance against a variety of attacks is demonstrated by formal proofs based on the Real-Or-Random (ROR) model and security evaluations using the Scyther tool, ensuring the integrity and secrecy of communications. Various threats are analyzed, and the protocol is proven to be secure and efficient from all forms of attacks.

Enhancing cell phone security through finger vein biometric authentication systems

The growing demand for secure mobile devices has led to the widespread adoption of biometric technologies. While personal identification numbers (PINs), passwords, gridlock patterns to safeguard phones and facial recognition have become common, they have certain limitations in terms of security and user convenience. These conventional security measures are riddled with susceptibilities, such as password pilferage, memory lapses in authentication details, and user mistakes in grid pattern creation. Due to the rising occurrence of cell phone incursions and theft, there is an urgent requirement for a strong security system that not only defends data but also shields the device itself. This paper proposes a resilient finger vein biometric security system as a more effective substitute for knowledge-based and password-based authentication techniques. The implementation of finger vein biometrics as a novel approach to enhancing cell phone security. The method employs infrared (IR) light transmission to capture the vein patterns and shadows resulting from the different thicknesses of finger muscles, bones, and tissues. The unique vascular patterns in fingers are difficult to forge, offering a higher level of security compared to other biometric systems. The simulations we conducted indicate an identification accuracy rate of 93.82%, indicating that this technique provides a substantial enhancement in preventing unauthorized access and theft of cell phones. This study examines the technology behind finger vein biometrics, its integration into mobile devices, and the security advantages it offers.

TAVA: Traceable anonymity-self-controllable V2X Authentication over dynamic multiple charging-service providers

The widespread deployment of Electric vehicles (EVs) leads to an increasing demand for charging piles and corresponding charging service (CS) from CS providers (CSPs). Pseudonym-based authentication mechanisms have been designed to resist the attacks which exploit the charging-authentication information to infer EV users’ identities and their driving routes. However, these existing mechanisms generated EV users' pseudonyms by relying on a trusted third entity, which affects the authentication system's resilience and EV user privacy-preservation.To this end, this paper proposes a Traceable Anonymity-self-controllable V2X Authentication (TAVA) scheme for the multiple-CSP (forming a CSP set) scenario, where each CSP independently manages its own CPs and a CSP randomly joins or leaves the CSP set. TAVA has a series of security capabilities. (1) First, it allows the mutual authentication between an EV user and a CP, while preserving EV user privacy and also assuring forward and backward security. This capability is achieved by using the multi-party computation technique to let all CSPs join the process of generating EV-users’ credentials but each CSP knows nothing about the credentials. (2) Secondly, TAVA has the capabilities of self-controllable anonymity and unlinkability by allowing each EV user to self-generate verifiable and unlinkable one-time pseudonyms based on bilinear- mapping technique. (3) At last, each EV user under TAVA is traceable. It is achieved by applying the two-factor authentication technique in TAVA and linking the one-time pseudonym to the two factors, namely, the credential and the EV user's biometric characteristics with low entropy rates. Note that all these security capabilities are achieved with less performance degradation in terms of communication and storage overheads in the dynamic environment. We conduct the informal and formal analysis of security capabilities and also make performance evaluations. The results indicate that, compared with the latest works, the computation overhead of the mutual authentication in TAVA is reduced by up to 89 %.

Enhancing Security in On-Chip Communication: A Survey of Threats and Solutions

As the complexity of integrated circuits (ICs) continues to increase, ensuring the security of on-chip communication becomes paramount. With the rise of interconnected devices and the Internet of Things (IoT), vulnerabilities in on-chip communication pose significant risks to data integrity, privacy, and system reliability. This article presents a comprehensive survey of the threats and solutions associated with enhancing security in on-chip communication. The survey begins with an overview of on-chip communication and its critical role in modern ICs. It then explores the diverse range of security threats faced by on-chip communication systems, including side-channel attacks, information leakage, unauthorized access, and the insertion of hardware Trojans. Each threat is examined in detail, highlighting its characteristics and potential impact on system security. In response to these threats, the survey examines various solutions and countermeasures aimed at enhancing on-chip communication security. These include encryption and authentication techniques, secure routing protocols, hardware-based security mechanisms, and software-based security solutions. Examples of real-world security breaches and successful implementations of security solutions are also presented to provide practical insights.

Design of Robotics Implementation of A Fingerprint Biometric System

Biometrics, rooted in the Greek terms "bios" (life) and "metrikos" (measure), represents a modern approach to identifying individuals based on their unique physical characteristics, such as fingerprints, facial features, and iris patterns. In today's increasingly digital landscape, traditional security methods like passwords and keys have become inadequate in safeguarding sensitive information. The rise of sophisticated cyberattacks and unauthorized access has highlighted the need for more advanced and secure authentication methods. This project aims to design and implement a fingerprint biometric system using robotics and FPGA technology. The system is intended to provide a more reliable and secure method of verifying identities by capturing and processing fingerprint images. It will extract minutiae points, the unique features within a fingerprint, to create a robust authentication mechanism. This approach promises to enhance security by offering an alternative to conventional methods that are often vulnerable to breaches. In developing this biometric system, the focus will be on ensuring that it can be effectively integrated into various applications where secure access control is crucial. By leveraging the unique and immutable nature of fingerprints, the system will reduce the risks associated with password reuse, theft, and unauthorized sharing. The inclusion of continuous authentication techniques will further strengthen security, ensuring that the user’s identity is verified throughout a session, not just at the initial login. Additionally, the project will incorporate version control mechanisms to track the development and deployment of the system, ensuring that any changes or updates can be easily managed and reviewed. This will help maintain the system's reliability and effectiveness over time, allowing it to adapt to evolving security challenges. Through this work, we aim to contribute to the broader adoption of biometric technologies in securing digital and physical environments, paving the way for more secure and seamless user experiences.

ShouldAR: Detecting Shoulder Surfing Attacks Using Multimodal Eye Tracking and Augmented Reality

Shoulder surfing attacks (SSAs) are a type of observation attack designed to illicitly gather sensitive data from "over the shoulder" of victims. This attack can be directed at mobile devices, desktop screens, Personal Identification Number (PIN) pads at an Automated Teller Machine (ATM), or written text. Existing solutions are generally focused on authentication techniques (e.g., logins) and are limited to specific attack scenarios (e.g., mobile devices or PIN Pads). We present ShotjldAR, a mobile and usable system to detect SSAs using multimodal eye gaze information (i.e., from both the potential attacker and victim). ShouldAR uses an augmented reality headset as a platform to incorporate user eye gaze tracking, rear-facing image collection and eye gaze analysis, and user notification of potential attacks. In a 24-participant study, we show that the prototype is capable of detecting 87.28% of SSAs against both physical and digital targets, a two-fold improvement on the baseline solution using a rear-facing mirror, a widely used solution to the SSA problem. The ShouldAR approach provides an AR-based, active SSA defense that applies to both digital and physical information entry in sensitive environments.

Retraction Note: A review of hashing based image authentication techniques

Retraction Note: A review of hashing based image authentication techniques

Fault-tolerant security-efficiency combined authentication scheme for manned-unmanned teaming

Manned-unmanned teaming (MUM-T) is an emerging network system which interconnects manned aerial vehicles (MAVs) with unmanned aerial vehicles (UAVs) to enhance mission effectiveness and reduce workloads. Like other wireless systems, MUM-T is prone to attacks from the open communication channel. Therefore, an authentication scheme is required to establish secure and trusted communication between the MAV and the UAV. However, existing schemes fail to provide adequate security features and necessary efficiency, mostly due to their incomprehensive threat modeling and improper use of authentication techniques. Moreover, traditional centralized architecture of the authentication server leads to the single point of failure (SPOF) problem, which jeopardizes the robustness and scalability of MUM-T. In this paper, we propose a fault-tolerant authentication scheme for MUM-T that will solve these problems. To enhance its security, we construct a new threat model consisting of adversary's capabilities, security features, and security challenges to ensure the security of a scheme under combination attacks. To preserve the highest possible efficiency, we propose the design principle of using lightweight primitives for authentication and applying public key operations in key establishment. To address the SPOF problem, we employ a distributed fault-tolerant mechanism to share registration information within authentication servers and defend against faulty nodes. As is demonstrated by the security proof and performance comparison, our scheme succeeds in improving security and reducing overall costs, which provides a better solution than existing schemes.

Smart classification of organic and inorganic pineapple juice using dual NIR spectrometers combined with chemometric techniques

The global demand for organic foods, driven by health benefits and consumer preferences, necessitates reliable methods for distinguishing organic products from their inorganic counterparts. This study investigates the application of dual handheld near infrared (NIR) spectroscopy devices, SCiO and Tellspec, combined with chemometric techniques for the nondestructive differentiation of organic and inorganic pineapple juices. The objective was to establish a rapid and robust method to differentiate organic pineapple juice from inorganic juice using unique spectral data from the two devices. Eighty-four pineapple juice samples were analyzed with preprocessing techniques, including mean centering, multiplicative scatter correction, standard normal variate, first derivative, and second derivative applied to the spectral data. Partial least squares discriminant analysis (PLS-DA) was employed for classification, and variable importance in projection (VIP) was used for optimal wavelength selection. The results demonstrated that the Tellspec scanner, particularly with second derivative preprocessing, achieved high accuracy in differentiating organic from inorganic pineapple juice. The fusion of data from both SCiO (740–1070 nm) and Tellspec (900–1700 nm) scanners, without preprocessing, coupled with the PLS-DA model, achieved perfect classification accuracy, sensitivity, and specificity (100 %) in both training and testing sets. This study highlights the potential of integrating dual handheld NIR spectroscopy with chemometrics to effectively and accurately classify organic and inorganic pineapple juices. The findings support using these advanced techniques for quality assurance and authentication in the food industry.

PoAh 2.0: AI-empowered dynamic authentication based adaptive blockchain consensus for IoMT-edge workflow

This paper introduces a significant advancement in the Proof of Authentication (PoAh) consensus algorithm, designed specifically for resource-constrained Internet of Things (IoT) devices. Building upon the foundations of PoAh consensus, this enhanced iteration, known as PoAh 2.0, integrates Artificial Intelligence (AI) at the block creator node level. This novel approach allows for the generation of block transactions embedded with AI-determined sensitivity and other applicable transaction-related metadata, a pioneering concept in this domain. The verifier node, a trusted entity, is tasked with verifying incoming blocks, utilizing the block header and its metadata information to determine authenticity while preserving the privacy of the content of the block’s data. A core innovation of PoAh 2.0 is its dynamic authentication mechanism, which adapts to the sensitivity level of the data within each block, behaving in an adaptive way based on the situation. AI plays a crucial role in this process, ensuring the block’s integrity and security are maintained. To demonstrate the efficacy of this advanced AI-enabled PoAh 2.0 consensus, we conducted a case study in an Internet of Medical Things (IoMT)-based eHealth scenario. The results from this study reveal that our developed dynamic authentication technique not only significantly enhances the original PoAh version but also establishes a new benchmark in block validation and security for eHealth applications. The integration of AI and improved dynamic authentication, calibrated to the security needs of each block, marks a novel and significant stride in blockchain research. This development not only enriches the current understanding of blockchain applications in IoT, but also sets a new direction for future research in secure and efficient blockchain implementations in the IoMT-Edge centric eHealth landscape.

A reversible-zero watermarking scheme for medical images

The paper addresses the issue of ensuring the authenticity and copyright of medical images in telemedicine applications, with a specific emphasis on watermarking methods. While several systems only concentrate on identifying tampering in medical images, others also provide the capacity to restore the tampered regions upon detection. While several authentication techniques in medical imaging have successfully achieved their goals, previous research underscores a notable deficiency: the resilience of these schemes against unintentional attacks has not been sufficiently examined or emphasized in previous research. This indicates the need for further development and investigation in improving the robustness of medical image authentication techniques against unintentional attacks. This research proposes a Reversible-Zero Watermarking approach as a solution to address these problems. The new approach merges the advantages of both the reversible and zero watermarking techniques. This system is comprised of two parts. The first part is a zero-watermarking technique that uses VGG19-based feature extraction and watermark information to establish an ownership share. The second part incorporates this ownership share into the image in a reversible manner using a combination of a discrete wavelet transform, an integer wavelet transform, and a difference expansion. Research findings confirm that the suggested watermarking approach for medical images demonstrates substantial enhancements compared to current methodologies. Research findings indicate that NC values are often around 0.9 for different attacks, whereas BER values are close to 0. It demonstrates exceptional qualities in being imperceptible, distinguishable, and robust. Additionally, the system provides a persistent verification feature that functions independently of disputes or third-party storage, making it the preferred choice in the domain of medical image watermarking.

Multi-factor Authentication Framework for Secured Data Access in Cloud Computing

Aims and Background: Accessing data services on the cloud raises serious concerns about security and privacy. To verify a client's stated identity, the existing authentication approach uses just one authentication factor. However, traditional techniques of one-factor authentication are inefficient since they demand an excessive amount of user information and expose their private data to eavesdropping. Methods: Cloud-based data storage is susceptible to both external and internal threats. Information security relies heavily on authentication, which is a method for verifying user identities before granting them access to protected data. When it comes to protecting data in a cloud computing environment from the most cutting-edge methods of attack, traditional password authentication simply isn't enough. For the purpose of protecting user identities in the cloud, this study presents interactive multi-layer authentication systems. Various access control policies are used when validating users in the cloud. Registration, permissions, and authentication factors for users are all parts of the cloud app's security process. Results: An intrusion detection system is built into the security mechanism to help identify people who could be malevolent. Various techniques are available for user identity verification, including intrusion detection, access control, and multi-factor authentication. The last step is to encrypt the data so that no one else can read it. Conclusion: To guarantee the effectiveness and accuracy of the suggested frameworks and methodology, they are experimentally evaluated. There were few false positives and a high detection rate.

Fuzzy logic and biometric-based lightweight cryptographic authentication for metaverse security

As Metaverse advances, robust authentication systems become more critical. Traditional security measures are not efficient and adaptable for metaverse scenarios. In this context, this study proposed a two-phase security framework that combines fuzzy logic and convolutional neural network (CNN) techniques for biometric authentication and a lightweight Cryptographic protocol for securing the Metaverse. In the first stage, the CNN model is used to extract accurate biometric signatures from hand tremor data. This innovative method takes into account the inherent unpredictability of biometrics. During the second phase, a cryptographic scheme is used to provide safe mutual authentication between the user and the Metaverse infrastructure. Our findings, which have been verified by BAN Logic analysis, show that the proposed framework achieves a high level of accuracy in user authentication and has robust defensive capabilities against typical cyber-attacks.

Enhancing Iris Authentication for Managing Multiple Cancellations: Leveraging Quotient Filters

Biometric authentication methods have become increasingly popular for their ability to offer secure and convenient access control. However, concerns about the privacy and security of biometric data have arisen. In this study, we present a novel approach to address these concerns by proposing a cancellable biometric encryption technique for secure and format-preserving iris authentication. Our method leverages the Quotient Filter data structure to transform encrypted iris templates into cancellable templates while preserving their original format. We carefully select an appropriate format-preserving encryption algorithm for iris templates and design a mapping scheme to achieve cancellability. To assess the effectiveness and performance of our approach, extensive experiments are conducted. The quantitative results indicate the efficiency and efficacy of our cancellable biometric encryption technique using the Quotient Filter. Our innovation, the Iris Authentication for Multiple Cancelled Instances Using a Quotient Filter (IAMCIQF), demonstrates competitive performance across several key metrics. IAMCIQF achieves a high level of security strength and strikes a balance between security and efficiency in terms of key size, encryption and decryption speeds and storage efficiency when compared to other existing techniques. The quantitative outcomes underscore IAMCIQF’s potential as a promising solution for attaining secure and format-preserving iris authentication, addressing critical concerns about biometric data security.

Role of nanomaterials in food authentication techniques: A mini-review

Role of nanomaterials in food authentication techniques: A mini-review

WITHDRAWN: A Secure and Efficient Blockchain-Powered Scheme for e-Invoicing Application

E-invoicing has become an increasingly popular form of electronic documents in B2B and B2G commerce transactions, and facilitates an effective exchange of invoice-related information containing tax invoice requirements. It enables businesses and governments to make transactions data be stored, retrieved and handled more efficiently among various aspects of business operations through an integrated systems solution such as ERP systems or e-commerce platforms. Although e-invoicing has numerous benefits, the integrated processes involve security risks associated with the ability to exchange and access critical transaction records and sensitive financial information over public networks such as the Internet. To secure e-invoicing services and maintain trust and privacy among their engaged stakeholders, many e-invoicing platforms use various authentication methods, such as factor-based mechanisms and digital signature techniques, to prevent potential threats and unauthorized access through cyberattacks. However, such authentication techniques cannot fully protect sensitive information contained in e-invoices from security breaches in the context of sharing transactional data. This proposed scheme introduces a secure authentication mechanism that integrates the self-certified methodology to enhance the trustworthiness of trading parties. In addition, the computational efforts of the proposed model show that high performance can be achieved in executing e-invoicing processes while maintaining data privacy. By leveraging the capabilities of blockchain technology and the adoption of decentralized applications and smart contracts, the proposed solution enables e-invoicing services to provide a highly secure, efficient, immutable, and transparent platform for businesses and tax authorities.

Main Primitive and Cryptography Tools for Authentication in VANET Environment: Literature Review

Vehicular ad hoc networks (VANETs) provide the potential to improve transportation efficiency by facilitating the sharing of traffic information among vehicles. Acceptance of VANET depends on communication speed and accuracy as well as privacy protection guaranteeing an individual's safety. Vehicle authentication is necessary to ensure message correctness. This necessitates the implementation of an effective privacy-preserving authentication scheme, as well as the need for both secrecy and timebound delivery of messages. Various privacy-preserving authentication schemes have been suggested to guarantee the integrity of messages in communications. However, most of the schemes are not able to solve issues related to computing costs, communication, security, privacy, threats, and vulnerabilities. In this review, we focus on cryptographic strategies that are suggested to accomplish privacy and authentication, such as identity-based, public key cryptography-based, pseudonym-based, and blockchain-based schemes. We provide a thorough analysis of schemes, including their categorizations, advantages, and drawbacks. The study demonstrates that the majority of current authentication techniques necessitate trusted authorities that lack transparency in their operations. Additionally, authentication process incurs substantial computational and communication overhead, leading to a considerable impact on the timely delivery of messages. More efforts are required to enhance the development of efficient authentication schemes in VANETs.