UPM Institutional Repository

A novel authentication scheme to increase security for non-repudiation of users


Hussein, Khalid Waleed and Mohd. Sani, Nor Fazlida and Mahmod, Ramlan and Abdullah@Selimun, Mohd. Taufik (2013) A novel authentication scheme to increase security for non-repudiation of users. International Journal of Computer Science and Mobile Computing, 2 (7). pp. 396-405. ISSN 2320-088X


Protection of sensitive information is a growing concern worldwide. Failure to protect sensitive information can lead to loss of clients in the banking sector or threaten national security. Access to sensitive information starts with e-authentication. Most authentication systems are designed for authenticated users only. However, the user is not the only party that needs to be authenticated to ensure the security of transactions on the Internet. Existing one-time password (OTP) mechanism cannot guarantee non-repudiation and fail to guarantee reuse of a stolen device, which is used in authentication.A novel authentication scheme based on OTP is presented in this paper. This paper proposes a secure multi-factor electronic authentication mechanism. This mechanism is intended to authenticate both the user and the mobile device of the user to ensure non-repudiation and protect the integrity of the OTP against adversarial attacks. The proposed mechanism can detect whether the mobile device is in the hands of the rightful owner before the OTP is sent to the user. The system requires each user to have a unique phone number and a unique mobile device (unique International Mobile Equipment Identity (IMEI)), in addition to an ID card number. The proposed system can ensure that the user who misuses the system becomes liable for the act committed. Therefore, the proposed system can be used in e-banking, e-government,and e-commerce systems, among other areas requiring high-security guarantees.

Download File

PDF (Abstract)
A novel authentication scheme to increase security for non.pdf

Download (85kB) | Preview

Additional Metadata

Item Type: Article
Divisions: Faculty of Computer Science and Information Technology
Publisher: CMR Institute of Technology
Keywords: Security; Non-repudiation; Multi factor authentication; IMEI; Authenticate mobile device; Nested multi factor authentication
Depositing User: Nurul Ainie Mokhtar
Date Deposited: 15 May 2015 04:38
Last Modified: 11 Sep 2015 00:08
URI: http://psasir.upm.edu.my/id/eprint/30637
Statistic Details: View Download Statistic

Actions (login required)

View Item View Item