- Communities& Collections
- Browse Items by:
- Issue Date
- Author
- Title
- Subject
Knowledge Based Authentication (KBA): Improving Security and Usability of Umm Al-Qura University’s Students’ Portal
User authentication is one of the key steps to have secure digital environments and prevent security threats. Knowledge-based authentication (KBA), in its simplest forms, is the process where users authenticate their identities by having knowledge of a specific secret which confirms their identity (e.g. passwords). Humans have issues with remembering non-meaningful strings. This is why they tend to choose easily predictable passwords in the sense that they mean something to them, thus potentially making attacks easier since an attacker is able to guess such passwords. To overcome this issue, user authentication approaches should find a way to reduce the burden on the users’ memory so they can choose stronger passwords. In other words, a trade-off between the usability needs of the users and the security needs of the system is required. Many empirical studies suggest that human’s memory is better in remembering images than in remembering text. Therefore, a graphical-based authentication approach is proposed in this study as an alternative to the currently used text-based approach in the students’ portal at Umm Al-Qura University. In addition, to increase the security level, this study proposes a second authentication phase which requires the students to answer a set of challenge questions right after authenticating their login with the graphical-based authentication approach. A simulation scenario was used to investigate and evaluate the feasibility of this alternative multiphase authentication approach in improving the security and usability of the students’ portal. Finally, several recommendations were mentioned for further research in this field.
Title: | Knowledge Based Authentication (KBA): Improving Security and Usability of Umm Al-Qura University’s Students’ Portal |
Authors: | Alsubait, Tahani Alabdullatif, Raghad Abdullatif Abdullah العبداللطيف، رغد عبداللطيف عبدالله |
Subjects :: | Knowledge-based authentication Graphical passwords |
Issue Date :: | 2020 |
Publisher :: | جامعة أم القرى |
Abstract: | User authentication is one of the key steps to have secure digital environments and prevent security threats. Knowledge-based authentication (KBA), in its simplest forms, is the process where users authenticate their identities by having knowledge of a specific secret which confirms their identity (e.g. passwords). Humans have issues with remembering non-meaningful strings. This is why they tend to choose easily predictable passwords in the sense that they mean something to them, thus potentially making attacks easier since an attacker is able to guess such passwords. To overcome this issue, user authentication approaches should find a way to reduce the burden on the users’ memory so they can choose stronger passwords. In other words, a trade-off between the usability needs of the users and the security needs of the system is required. Many empirical studies suggest that human’s memory is better in remembering images than in remembering text. Therefore, a graphical-based authentication approach is proposed in this study as an alternative to the currently used text-based approach in the students’ portal at Umm Al-Qura University. In addition, to increase the security level, this study proposes a second authentication phase which requires the students to answer a set of challenge questions right after authenticating their login with the graphical-based authentication approach. A simulation scenario was used to investigate and evaluate the feasibility of this alternative multiphase authentication approach in improving the security and usability of the students’ portal. Finally, several recommendations were mentioned for further research in this field. |
Description :: | 123 paper |
URI: | https://dorar.uqu.edu.sa/uquui/handle/20.500.12248/130301 |
Appears in Collections : | الرسائل العلمية المحدثة |
File | Description | Size | Format | |
---|---|---|---|---|
24077.pdf " Restricted Access" | الرسالة الكاملة | 4.21 MB | Adobe PDF | View/OpenRequest a copy |
absa24077.pdf " Restricted Access" | ملخص الرسالة بالعربي | 74.25 kB | Adobe PDF | View/OpenRequest a copy |
abse24077.pdf " Restricted Access" | ملخص الرسالة بالإنجليزي | 135.28 kB | Adobe PDF | View/OpenRequest a copy |
cont24077.pdf " Restricted Access" | فهرس الموضوعات | 59.41 kB | Adobe PDF | View/OpenRequest a copy |
indu24077.pdf " Restricted Access" | المقدمة | 225.65 kB | Adobe PDF | View/OpenRequest a copy |
title24077.pdf " Restricted Access" | غلاف | 301.68 kB | Adobe PDF | View/OpenRequest a copy |
Items in D-Library are protected by copyright, with all rights reserved, unless otherwise indicated.
Comments (0)