電機資訊學院: 電子工程學研究所指導教授: 鄭振牟王國婷Wang, Guo-TingGuo-TingWang2017-03-062018-07-102017-03-062018-07-102016http://ntur.lib.ntu.edu.tw//handle/246246/276187隨著手機和平板電腦的普及,越來越多人習慣用行動裝置上網,在登入網站時,相較於使用傳統的個人電腦,在行動裝置上輸入密碼相當麻煩,但目前輸入帳號密碼仍然是最普遍的身分認證方式,因此許多使用者常在一開始登入後,就讓裝置紀錄密碼,或直接不登出網站,我們能夠發現,使用者為了方便使用,「密碼」在行動裝置上反而更不安全。 除了使用「密碼」之外,有其他更加安全的認證方式可以選擇,例如加上每次都會更新的「一次性密碼」或硬體設備,作為雙重認證,但這些方式常因為步驟繁瑣而讓使用者卻步,FIDO 聯盟就是為了解決這樣的問題而成立的,他制定了免密碼登入的規範,搭配生物辨識的裝置,創造出安全且方便的登入環境。使用者僅需在登入該帳號時,通過瞳孔或指紋辨識等系統,即可自動登入。 FIDO 所制定的這套規範,除了官方文件之外,目前較少相關的公開資源,本論文實作了其中的客戶端軟體,期望能讓更多人參考並重視這個議題,讓未來的行動裝置,能更加兼具安全性與方便性。With the popularity of mobile phones and tablets, more and more people surf the Internet with mobile devices. When users log in a website, in contrast to using traditional PCs, typing the password is very troublesome on mobile phones. However, the most commonly used authentication is still password-based. Thus, users usually record their password on browsers or apps after the first login. These security issues become apparent on mobile devices. Apart from using ”password”, there are several authentication solutions with higher security. For example, adding one-time password or hardware token for two-factor authentication are good choices. Most of those solutions are not adopted because of the cumbersome steps. FIDO Alliance is formed to address the problems of password and authentication. They develop specification of password-less solution. With biometric device, the ecosystem oflogin is secure and convenient. Users only need to pass identity verification,then they can successfully log in. There are few open resources related to standard published by FIDO except to the official documents. In this thesis, we implement the client part sothat more people can refer to it and pay attention to this issue.1324369 bytesapplication/pdf論文公開時間: 2016/8/2論文使用權限: 同意有償授權(權利金給回饋學校)FIDO聯盟身份認證行動裝置安全密碼FIDO Allianceauthenticationmobile securitypasswordthesis10.6342/NTU201601320http://ntur.lib.ntu.edu.tw/bitstream/246246/276187/1/ntu-105-R03943086-1.pdf