Strong Authentication with Mobile Phone as Security Token (Miss-Call)

Today security concerns are on the rise in all areas industries such as banks, governmental applications, healthcare industry, militaryorganization, educational institutions etc, with one common weak link being “passwords�. Several proper strategies for using passwords have been proposed. Some of which are very difficult to use and others might not meet the company’s security concerns.The usage of passwords for authentication is no longer sufficient and stronger authentication schemes are necessary.Two factor authentication uses elements or devices such as tokens and ATM cards. We have proposed to resolve the password problem, which could be inconvenient for the user and costly for the service providers to combat otherwise. To avoid the usage of additional device, the mobile phone is adopted as security token. In this paper several different authentication solutions using the mobile as authentication token are discussed, where these solutions vary in complexity,strength, security and user friendliness. One of the authentication schemes (OTP solution) is implemented to verify their usability. Hence, a classification and evaluation of the different solutions is provided according to defined criteria.