Token-Based Authentication Solutions for Mobile Devices
Date Issued
2014
Date
2014
Author(s)
Wu, Zhong-Xian
Abstract
Nowadays, smartphones and tablets are widely used to access personal information through various applications and cloud services. On these mobile devices, the most commonly used identity authentications are still password-based, which have several usability and security issues. Because it is hard to type a long password on a mobile device without a physical keyboard, in contrast to traditional PCs, people usually choose to compromise the security for the ease of use by using a shorter password, or never log out the devices. In addition, with some fundamental weakness, ``password'' is insecure in many practical scenario. Therefore people have developed authentication solutions with a higher security level; for example, ``two-step verification'' with a one-time password. However, those ``better'' solutions is not widely adopted since they are not simpler to use than just typing a password.
To overcome this issue, in this paper, we propose a token-based authentication architecture, based on which a centralized single sign-on service and a password manager can be easily built, in order to solve the problem in a secure and user-friendly manner.
Subjects
身份認證
行動裝置安全性
密碼
身份令牌
身份管理
單一登入
Type
thesis
File(s)![Thumbnail Image]()
Loading...
Name
ntu-103-R02921052-1.pdf
Size
23.32 KB
Format
Adobe PDF
Checksum
(MD5):94b68adaf75374a9fcc55904d576e337