AuthenLink: A User-Centred Authentication System for a Secure Mobile Commerce

Christina Braz, Esma Aïmeur

Abstract

We envision an environment where humans communicate directly with computers without additional authentication inputs like passwords, passphrases, PINs (Personal Identification Numbers), biometrics, or other existent authentication systems; and where humans network (intercommunicate) continually with wireless (mobile) devices. In this paper, we propose a new mobile authentication system, not yet implemented, called “AuthenLink”, coupled with a new approach to distinguishing characteristics to authenticate people (authentication factor): something you CONVEY. The utmost purpose of this paper is to provide an ease, user-centred and acceptable security authentication system against fraud, counterfeit, and theft for the mobile commerce (m-Commerce) domain, more specifically for mobile devices. Our authentication system achieves its goal through a microprocessor chip (ChipTag) computer implanted under human skin. This ChipTag is able to authenticate user’s access to systems, connect them wirelessly, through the Radio Frequency Identification (RFID) technology, and enable mobile devices perform mobile transactions, access files, or shop online.

References

  1. Pierre, S., Réseaux et systèmes informatiques mobiles - Fondements, architectures et applications, Presses Internationales Polytechnique, École Polytechnique de Montréal (Quebec) Canada (2003).
  2. Bassiouni, M. & Mukherjee, A., A VLSI Chip for Efficient Transmission and Retrieval of Information, ACM Journal of the ACM, Department of Computer Science University of Central Florida Orlando, Florida 32816 - USA, (1987).
  3. Burnett, S. & Paine, S., RSA Security's Official Guide To Cryptography, RSA Press, McGraw-Hill Companies, Berkeley, California - U.S.A. (2002).
  4. Harbitter, A. & Menascé, A., The Performance of Public Key-Enabled Kerberos Authentication in Mobile Computing Applications, Proceedings of the 8th ACM (Journal of the ACM), Conference on Computer and Communications Security, Philadelphia, PA - U.S.A., Session: Mobile Code and Distributed Systems, pp. 78 - 85 (2001).
  5. Raman, B. & Ramanathan, A., Artificial Intelligence Based Authentication Scheme for Mobile Adhoc Networks, White-Paper Dept. of. Computer Science/Dept. of Electrical Engg. - Texas A&M University, College Station, Texas 77843 U.S.A. (2001).
  6. Barrett, D. & Silverman R., SSH, The Secure Shell - The Definitive Guide, 1st Edition, O'Reilly & Associates, Inc., 101 Morris West, Sebastopol, CA - U.S. (2001).
  7. Smith. E. R., Authentication: From Passwords to Public Keys, Addison-Wesley, AddisonWesley, 1st edition U.S.A. (October 1, 2001a).
  8. Smith. E. R., Authentication: From Passwords to Public Keys, Addison-Wesley, AddisonWesley, 1st edition U.S.A. (October 1, 2001b).
  9. Smith. E. R., Authentication: From Passwords to Public Keys, Addison-Wesley, AddisonWesley, 1st edition U.S.A. (October 1, 2001c).
  10. Jøsang, A. & Patton, M. A., User Interface Requirements for Authentication of Communication, in the Proceedings of the Australasian User Interface Conference, Adelaide, Australia (February, 2003).
  11. http://web.mit.edu/kerberos/www/ U2 Hibbert, C., Frequently Asked Questions on SSNs and Privacy, Computer Professionals for Social Responsibility - Palo Alto, CA - U.S. (2004). http://www.cpsr.org/cpsr/privacy/ssn/ssn.faq.html U3 Braz, C., AuthenLink's Architectures Usage Scenarios (2003). http://step.polymtl.ca/chbraa/
Download


Paper Citation


in Harvard Style

Braz C. and Aïmeur E. (2004). AuthenLink: A User-Centred Authentication System for a Secure Mobile Commerce . In Proceedings of the 3rd International Workshop on Wireless Information Systems - Volume 1: WIS, (ICEIS 2004) ISBN 972-8865-02-3, pages 1-11. DOI: 10.5220/0002660000010011


in Bibtex Style

@conference{wis04,
author={Christina Braz and Esma Aïmeur},
title={AuthenLink: A User-Centred Authentication System for a Secure Mobile Commerce},
booktitle={Proceedings of the 3rd International Workshop on Wireless Information Systems - Volume 1: WIS, (ICEIS 2004)},
year={2004},
pages={1-11},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002660000010011},
isbn={972-8865-02-3},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 3rd International Workshop on Wireless Information Systems - Volume 1: WIS, (ICEIS 2004)
TI - AuthenLink: A User-Centred Authentication System for a Secure Mobile Commerce
SN - 972-8865-02-3
AU - Braz C.
AU - Aïmeur E.
PY - 2004
SP - 1
EP - 11
DO - 10.5220/0002660000010011