Multi-Factor Stateful Authentication using NFC, and Mobile Phones

In this paper, we present a multi-factor stateful authentication system that uses Near Field Communication (NFC) technology, a mobile phone, known pictures, and state (time sequence) to authenticate users. A user firstly accesses to the mobile phone and then emulates encrypted NFC tags through a mobile app. This mobile app forwards an authentication code to the computer after correctly selecting a preset picture. A custom process bypasses the built-in OS access control letting the user to type a passcode to gain access to the computer. The custom access control process running on the computer is programmed by using an open source credential provider and a database that stores the encrypted authentication codes. Our experiments show that this multi-factor and stateful authentication prevents man-in-the-middle attacks and improves security with a simplified login process.

[1]  Tsuyoshi Murata,et al.  {m , 1934, ACML.

[2]  Pan Hui,et al.  Keep your nice friends close, but your rich friends closer — Computation offloading using NFC , 2016, IEEE INFOCOM 2017 - IEEE Conference on Computer Communications.

[3]  Shuangbao Wang,et al.  NFC Unlock: Secure Two-Factor Computer Authentication Using NFC , 2017, 2017 IEEE 14th International Conference on Mobile Ad Hoc and Sensor Systems (MASS).

[4]  Mayez A. Al-Mouhamed,et al.  AES-128 ECB encryption on GPUs and effects of input plaintext patterns on performance , 2014, 15th IEEE/ACIS International Conference on Software Engineering, Artificial Intelligence, Networking and Parallel/Distributed Computing (SNPD).

[5]  Takahiro Watanabe,et al.  Design of high-throughput SHA-256 hash function based on FPGA , 2017, 2017 6th International Conference on Electrical Engineering and Informatics (ICEEI).

[6]  T. Yorozu,et al.  Electron Spectroscopy Studies on Magneto-Optical Media and Plastic Substrate Interface , 1987, IEEE Translation Journal on Magnetics in Japan.