Open AccessKnowledge-Based Authentication using Twitter Can We Use Lunch Menus As Passwords?
Author(s) -
Masayuki Okamoto
Publication year - 2013
Publication title -
international journal of network security and its applications/international journal of network security and applications
Language(s) - English
Resource type - Journals
eISSN - 0975-2307
pISSN - 0974-9330
DOI - 10.5121/ijnsa.2013.5501
Subject(s) - password , authentication (law) , computer science , internet privacy , computer security , world wide web
The vast majority of online servicesrequire some form ofpersonal authentication. Unfortunately, standard password authentication strikes a poor balance between security and convenience, whereas strongerauthentication schemes,such as those involvingbiometrics, one-time passwords, and electronic certificates, depend on specialized hardware and/orhardware tokens. To achieve convenience, robustness,and cost-effectiveness together, we propose a scheme for dynamicknowledge-based authentication in which Twitter direct messaging is used to collectsimple, memorable question/answer pairs. We also conduct a user study to evaluate the proposed scheme