High Impact Factor : 4.396 icon | Submit Manuscript Online icon |

App for Enhancing the Security of Secret Questions

Author(s):

Mrs. Nalini Yadav , DYPIEMR, Akurdi Pune, India; Shivani Rohane, DYPIEMR, Akurdi Pune, India; Komal Patil, DYPIEMR, Akurdi Pune, India; Prajwal Gaware, DYPIEMR, Akurdi Pune, India; Krishna Kulakarni, DYPIEMR, Akurdi Pune, India

Keywords:

Security, Questions, Authentication, Mobile Sensing, Activity Recognition

Abstract

At present with increasing popularity of online shopping Debit or Credit card fraud are also increased. Personal information security is major concerns for customers, merchants and banks specifically in the case of Card Not Present. Now a day's many applications provide secondary authentication methods i.e., password recovery questions, to reset the password of account when a user login fails. Today's prevalence of smart phones has granted us new opportunities to observe and understand how the personal data collected by smart phone sensors and apps can help create personalized secret questions without violating the users’ privacy concerns. We present a Secret-Question based Authentication system, called “Secret-QA” that creates a set of secret questions on basis of people's smart phone usage. We develop a prototype on Android smart phones, and evaluate the security of the secret questions by asking the acquaintance/stranger who participate in our user study to guess the answers with and without the help of online tools; meanwhile, we observe the questions reliability by asking participants to answer their own questions. Our experimental results reveal that the secret questions related to motion sensors, calendar, app instalment, and part of legacy app usage history (e.g., phone calls) have the best memorability for users as well as the highest robustness to attacks.

Other Details

Paper ID: IJSRDV6I40207
Published in: Volume : 6, Issue : 4
Publication Date: 01/07/2018
Page(s): 375-378

Article Preview

Download Article