Password authentication with insecure communication
Communications of the ACM
Integrated OTP-Based User Authentication Scheme Using Smart Cards in Home Networks
HICSS '08 Proceedings of the Proceedings of the 41st Annual Hawaii International Conference on System Sciences
WCRE '08 Proceedings of the 2008 15th Working Conference on Reverse Engineering
New directions in cryptography
IEEE Transactions on Information Theory
Hi-index | 0.00 |
The most common approach for authenticating a computer user is done by means of username and password. However, when working on the mobile environment, this approach is inversely unsuitable for the visually impaired that may have low level of computer skilled. This article argues that a suitable authentication scheme can be designed in a friendly manner. With regarding to this, we advocate that use of One-Time Password (OTP) protocol for enhancing password-based authentication for the visually impaired, but demanding some extra mechanism (such as those of audio-based CAPCHA playback with local Text-to-Speech (TTS) engine) to be included in the verification process so that it cannot be interfered by malicious of robotic attacks. It is in the sense that we take the advantage of one-time validation by using OTP, the ability to encrypt the secret information through RSA asymmetric cryptographic algorithm and store the secret information into two-dimension barcode (also called QR-code). This would be contributed to the novel design of authentication for the visually impaired on mobile, which is capable of preventing the anti-robotic attack problem in an efficient manner. Therefore, made the proposed scheme more secure, more practical and more useful to the mobile users, who are visually impaired during the access of computers through some mobile devices.