D-Library Repositry

//uquui/

Reports Community

Annual Report Collection

 2020

 Knowledge Based Authentication (KBA): Improving Security and Usability of Umm Al-Qura University’s Students’ Portal

 Alabdullatif, Raghad Abdullatif Abdullah


//uquui/handle/20.500.12248/130301
0 Downloads
864 Visits

Knowledge Based Authentication (KBA): Improving Security and Usability of Umm Al-Qura University’s Students’ Portal

Call Number : 24077
Publisher :جامعة أم القرى
Pub Place : مكة المكرمة
Issue Date : 2020 - 1441 H
Description : 123 paper
Format : ماجستير
Language : انجليزي
Is format of : مكتبة الملك عبدالله بن عبدالعزيز الجامعية

User authentication is one of the key steps to have secure digital environments and prevent security threats. Knowledge-based authentication (KBA), in its simplest forms, is the process where users authenticate their identities by having knowledge of a specific secret which confirms their identity (e.g. passwords). Humans have issues with remembering non-meaningful strings. This is why they tend to choose easily predictable passwords in the sense that they mean something to them, thus potentially making attacks easier since an attacker is able to guess such passwords. To overcome this issue, user authentication approaches should find a way to reduce the burden on the users’ memory so they can choose stronger passwords. In other words, a trade-off between the usability needs of the users and the security needs of the system is required. Many empirical studies suggest that human’s memory is better in remembering images than in remembering text. Therefore, a graphical-based authentication approach is proposed in this study as an alternative to the currently used text-based approach in the students’ portal at Umm Al-Qura University. In addition, to increase the security level, this study proposes a second authentication phase which requires the students to answer a set of challenge questions right after authenticating their login with the graphical-based authentication approach. A simulation scenario was used to investigate and evaluate the feasibility of this alternative multiphase authentication approach in improving the security and usability of the students’ portal. Finally, several recommendations were mentioned for further research in this field.

Title: Knowledge Based Authentication (KBA): Improving Security and Usability of Umm Al-Qura University’s Students’ Portal
Authors: Alsubait, Tahani
Alabdullatif, Raghad Abdullatif Abdullah
العبداللطيف، رغد عبداللطيف عبدالله
Subjects :: Knowledge-based authentication
Graphical passwords
Issue Date :: 2020
Publisher :: جامعة أم القرى
Abstract: User authentication is one of the key steps to have secure digital environments and prevent security threats. Knowledge-based authentication (KBA), in its simplest forms, is the process where users authenticate their identities by having knowledge of a specific secret which confirms their identity (e.g. passwords). Humans have issues with remembering non-meaningful strings. This is why they tend to choose easily predictable passwords in the sense that they mean something to them, thus potentially making attacks easier since an attacker is able to guess such passwords. To overcome this issue, user authentication approaches should find a way to reduce the burden on the users’ memory so they can choose stronger passwords. In other words, a trade-off between the usability needs of the users and the security needs of the system is required. Many empirical studies suggest that human’s memory is better in remembering images than in remembering text. Therefore, a graphical-based authentication approach is proposed in this study as an alternative to the currently used text-based approach in the students’ portal at Umm Al-Qura University. In addition, to increase the security level, this study proposes a second authentication phase which requires the students to answer a set of challenge questions right after authenticating their login with the graphical-based authentication approach. A simulation scenario was used to investigate and evaluate the feasibility of this alternative multiphase authentication approach in improving the security and usability of the students’ portal. Finally, several recommendations were mentioned for further research in this field.
Description :: 123 paper
URI: https://dorar.uqu.edu.sa/uquui/handle/20.500.12248/130301
Appears in Collections :الرسائل العلمية المحدثة

Files in This Item :
File Description SizeFormat 
24077.pdf
"   Restricted Access"
الرسالة الكاملة4.21 MBAdobe PDFView/Open
Request a copy
absa24077.pdf
"   Restricted Access"
ملخص الرسالة بالعربي74.25 kBAdobe PDFView/Open
Request a copy
abse24077.pdf
"   Restricted Access"
ملخص الرسالة بالإنجليزي135.28 kBAdobe PDFView/Open
Request a copy
cont24077.pdf
"   Restricted Access"
فهرس الموضوعات59.41 kBAdobe PDFView/Open
Request a copy
indu24077.pdf
"   Restricted Access"
المقدمة225.65 kBAdobe PDFView/Open
Request a copy
title24077.pdf
"   Restricted Access"
غلاف301.68 kBAdobe PDFView/Open
Request a copy
Add to Auditors PDF citation Digitization Request

Comments (0)



Items in D-Library are protected by copyright, with all rights reserved, unless otherwise indicated.