Skip to Main content Skip to Navigation
Conference papers

Enhancing CardSpace Authentication Using a Mobile Device

Abstract : In this paper we propose a simple, novel scheme for using a mobile device to enhance CardSpace authentication. During the process of user authentication on a PC using CardSpace, a random and short-lived one-time password is sent to the user’s mobile device; this must then be entered into the PC by the user when prompted. The scheme does not require any changes to login servers, the CardSpace identity selector, or to the mobile device itself. We specify the scheme and give details of a proof-of-concept prototype. Security and operational analyses are also provided.
Document type :
Conference papers
Complete list of metadata

Cited literature [22 references]  Display  Hide  Download

https://hal.inria.fr/hal-01586573
Contributor : Hal Ifip <>
Submitted on : Wednesday, September 13, 2017 - 8:55:45 AM
Last modification on : Tuesday, July 13, 2021 - 4:18:04 PM
Long-term archiving on: : Thursday, December 14, 2017 - 12:29:03 PM

File

978-3-642-22348-8_16_Chapter.p...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Haitham Al-Sinani, Chris Mitchell. Enhancing CardSpace Authentication Using a Mobile Device. 23th Data and Applications Security (DBSec), Jul 2011, Richmond, VA, United States. pp.201-216, ⟨10.1007/978-3-642-22348-8_16⟩. ⟨hal-01586573⟩

Share

Metrics

Record views

51

Files downloads

164