Two factor authentication using mobile phones

Fadi Aloul, Syed Zahidi, Wassim El-Hajj
2009 2009 IEEE/ACS International Conference on Computer Systems and Applications  
This paper describes a method of implementing two factor authentication using mobile phones. The proposed method guarantees that authenticating to services, such as online banking or ATM machines, is done in a very secure manner. The proposed system involves using a mobile phone as a software token for One Time Password generation. The generated One Time Password is valid for only a short userdefined period of time and is generated by factors that are unique to both, the user and the mobile
more » ... ce itself. Additionally, an SMS-based mechanism is implemented as both a backup mechanism for retrieving the password and as a possible mean of synchronization. The proposed method has been implemented and tested. Initial results show the success of the proposed method.
doi:10.1109/aiccsa.2009.5069395 dblp:conf/aiccsa/AloulZE09 fatcat:nng6s3zvazavdbiwjb2au3zhri