DocumentCode
156763
Title
Mobile Authentication Secure against Man-in-the-Middle Attacks
Author
Bicakci, Kemal ; Unal, Devrim ; Ascioglu, Nadir ; Adalier, Oktay
Author_Institution
TOBB Univ. of Econ. & Technol., Ankara, Turkey
fYear
2014
fDate
8-11 April 2014
Firstpage
273
Lastpage
276
Abstract
Current mobile authentication solutions puts a cognitive burden on users to detect and avoid Man-In-The-Middle attacks. In this paper, we present a mobile authentication protocol named Mobile-ID which prevents Man-In-The-Middle attacks without relying on a human in the loop. With Mobile-ID, the message signed by the secure element on the mobile device incorporates the context information of the connected service provider. Hence, upon receiving the signed message the Mobile-ID server could easily identify the existence of an on-going attack and notify the genuine service provider.
Keywords
message authentication; mobile communication; mobile computing; telecommunication security; Mobile-ID; man-in-the-middle attack; mobile authentication protocol; Authentication; Context; Mobile communication; Mobile handsets; Protocols; Servers; Man-In-The-Middle attack; authentication; mobile signature; phishing; secure element; security protocol;
fLanguage
English
Publisher
ieee
Conference_Titel
Mobile Cloud Computing, Services, and Engineering (MobileCloud), 2014 2nd IEEE International Conference on
Conference_Location
Oxford
Type
conf
DOI
10.1109/MobileCloud.2014.43
Filename
6834975
Link To Document