Using the mobile phone as a security token for unified authentication

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Steffen Hallsteinsen Articles by Ivar Jorstad Articles by Do Van Thanh

Second International Conference on Systems and Networks Communications (ICSNC 2007)

Cap Esterel, France

August 25-August 31

ISBN: 0-7695-2938-0

	ASCII Text	x
	Steffen Hallsteinsen, Ivar Jorstad, Do Van Thanh, "Using the mobile phone as a security token for unified authentication," Systems and Networks Communication, International Conference on, pp. 68, Second International Conference on Systems and Networks Communications (ICSNC 2007), 2007.

	BibTex	x
	@article{ 10.1109/ICSNC.2007.82, author = {Steffen Hallsteinsen and Ivar Jorstad and Do Van Thanh}, title = {Using the mobile phone as a security token for unified authentication}, journal ={Systems and Networks Communication, International Conference on}, volume = {0}, year = {2007}, isbn = {0-7695-2938-0}, pages = {68}, doi = {http://doi.ieeecomputersociety.org/10.1109/ICSNC.2007.82}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Systems and Networks Communication, International Conference on TI - Using the mobile phone as a security token for unified authentication SN - 0-7695-2938-0 SP EP A1 - Steffen Hallsteinsen, A1 - Ivar Jorstad, A1 - Do Van Thanh, PY - 2007 KW - authentcation KW - mobility VL - 0 JA - Systems and Networks Communication, International Conference on ER -

Steffen Hallsteinsen, Norwegian University of Science and Technology, Norway

Ivar Jorstad, Ubisafe, Norway

Do Van Thanh, Telenor R& I, Norway

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ICSNC.2007.82

The number of different identities and credentials used for authentication towards services on the Internet has increased beyond the manageable. Still, the most common authentication scheme is based on usernames and passwords. This is a weak authentication mechanism, which can be broken by eavesdropping on the network connection or by sloppy handling by the users (e.g. re-use of the same password for different services, writing down the passwords on paper etc.). Also, management of user credentials is a costly task for most companies, estimated by IDC to around 200-300USD pr. user/year. Hence, better solutions for simplified, yet secure authentication, is required in the future. This paper proposes and describes an authentication scheme based on a One-Time Password (OTP) MIDlet running on a mobile phone for unified authentication towards any type of service on the Internet.

Index Terms:

authentcation, mobility

Citation:

Steffen Hallsteinsen, Ivar Jorstad, Do Van Thanh, "Using the mobile phone as a security token for unified authentication," icsnc, pp.68, Second International Conference on Systems and Networks Communications (ICSNC 2007), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.