Contact Project Developer Ashish D. Tiwari [astiwz@gmail.com]
Download Synopsis Abstract
Mobile Apps Java BE-Engineering(CO/IT) ME-Engineering(CO/IT) BCS MCS BCA MCA MCM BSC Computer/IT MSC Computer/IT Diploma (CO/IT) IEEE-2016

Understanding Smartphone Sensor and App Data for Enhancing the Security of Secret Questions

The application will be having security question based on their application data and sensor data which are stored in the local database.
Abstract-Synopsis-Documentation

Understanding Smartphone Sensor and App Data for Enhancing the Security of Secret Questions

Abstract:

 

          Many web applications provide secondary authentication methods, i.e., secret questions (or password recovery questions), to reset the account password when a user’s login fails. However, the answers to many such secret questions can be easily guessed by an acquaintance or exposed to a stranger that has access to public online tools (e.g., online social networks); moreover, a user may forget her/his answers long after creating the secret questions. Today’s prevalence of smart phones has granted us new opportunities to observe and understand how the personal data collected by Smartphone sensors and apps can help create personalized secret questions without violating the users’ privacy concerns. In this paper, we present a Secret-Question based Authentication system, called “Secret-QA” that creates a set of secret questions on basic of people’s Smartphone usage. We develop a prototype on Android smart phones, and evaluate the security of the secret questions by asking the acquaintance/stranger who participate in our user study to guess the answers with and without the help of online tools; meanwhile, we observe the questions’ reliability by asking participants to answer their own questions. Our experimental results reveal that the secret questions related to motion sensors, calendar, app installment, and part of legacy app usage history (e.g., phone calls) have the best memorability for users as well as the highest robustness to attacks

Existing System:

In existing system the application will be having common security level question that won’t merge with the mobile data or application data. So that the ease of entering app was more. The attacker can easily make guess attack on those questions.

Comment is Only Available for registered users! Create Account or Login Now!