UPM Institutional Repository

Bring your own device: security challenges and a theoretical framework for two-factor authentication


Olalere, Morufu and Abdullah, Mohd Taufik and Mahmod, Ramlan and Abdullah, Azizol (2016) Bring your own device: security challenges and a theoretical framework for two-factor authentication. International Journal of Computer Networks and Communications Security, 4 (1). pp. 21-32. ISSN 2410-0595; ESSN: 2308-9830


In this paper, the security challenges of BYOD are discussed, including existing security solutions which often are too restrictive. Data leakage is one of the security challenges confronting BYOD. Data leakage can occur as a result of stolen, lost or compromised employee devices. When an employee device is stolen, lost or comprised, an attacker can obtain access directly to the enterprise data on the employee device if a strong authentication technique is not in place. The traditional means of authenticating employees when connecting to an enterprise server in a traditional network environment which relies on either knowledge or ownership is too weak for the BYOD environment. In such a traditional enterprise network, employees obtain access to an enterprise server using their respective stationary desktop, while in a BYOD environment access to an enterprise server is from anywhere, making it easy for an attacker in possession of an employee device and password to gain unauthorised access. To address this problem, there is need for a strong authentication technique. This study proposes a theoretical framework for a two-factor authentication method that combines knowledge-based (Password) and biometric-based (Keystroke dynamic) features for authentication of mobile devices in a BYOD environment. Technical details on how the framework can be implemented are presented. It is the belief of the authors that proper implementation of the proposed potential future application framework will go a long way in addressing the problem of data leakage in a BYOD environment.

Download File

Text (Abstract)
Bring your own device security challenges and a theoretical framework for two-factor authentication.pdf

Download (5kB) | Preview

Additional Metadata

Item Type: Article
Divisions: Faculty of Computer Science and Information Technology
Publisher: Dorma Trading Est
Keywords: BYOD; Mobile device; Authentication; Biometric; Keystroke dynamic
Depositing User: Mohd Hafiz Che Mahasan
Date Deposited: 14 Aug 2018 02:30
Last Modified: 14 Aug 2018 02:30
URI: http://psasir.upm.edu.my/id/eprint/55224
Statistic Details: View Download Statistic

Actions (login required)

View Item View Item