Orchestration or automation: Authentication flaw detection in Android apps

Orchestration or automation: Authentication flaw detection in Android apps

Passwords are pervasively used to authenticate users' identities in mobile apps. To secure passwords against attacks, protection is applied to the password authentication protocol (PAP). The implementation of the protection scheme becomes an important factor in protecting PAP against attacks. W...

Full description

Saved in:

Bibliographic Details
Main Authors:	MA, Siqi, LI, Juanru, NEPAL, Surya, OSTRY, Diethelm, LO, David, JHA, Sanjay K., DENG, Robert H., BERTINO, Elisa
Format:	text
Language:	English
Published:	Institutional Knowledge at Singapore Management University 2022
Subjects:	Vulnerability detection password authentication mobile security Databases and Information Systems Information Security Software Engineering
Online Access:	https://ink.library.smu.edu.sg/sis_research/7651 https://ink.library.smu.edu.sg/context/sis_research/article/8654/viewcontent/09317767.pdf
Tags:	Add Tag No Tags, Be the first to tag this record!
Institution:	Singapore Management University
Language:	English

Similar Items

Finding flaws from password authentication code in Android apps
by: MA, Siqi, et al.
Published: (2019)

An empirical study of SMS one-time password authentication in Android apps
by: MA, Siqi, et al.
Published: (2019)

A new approach for anonymous password authentication
by: YANG, Yanjiang, et al.
Published: (2009)

n PAKE+: a tree-based group password-authenticated key exchange protocol using different passwords
by: WAN, Zhiguo, et al.
Published: (2009)

A practical password-based two-server authentication and key exchange system
by: YANG, Yanjiang, et al.
Published: (2006)

Secure self-checkout kiosks using Alma API with two-factor authentication
by: BULAON, Ron
Published: (2021)

Two-factor mutual authentication based on smart cards and passwords
by: YANG, Guomin, et al.
Published: (2008)

IND-PCA secure KEM is enough for password-based authenticated key exchange (short paper)
by: XUE, Haiyang, et al.
Published: (2017)

A New Architecture for User Authentication and Key Exchange Using Password for Federated Enterprises
by: YANG, Yanjiang, et al.
Published: (2005)

Leakage-resilient password entry: Challenges, design, and evaluation
by: YAN, Qiang, et al.
Published: (2015)

Password-free network security through joint use of audio and video
by: Civanlar M.R., et al.
Published: (2018)

Towards Secure and Usable Leakage-Resilient Password Entry
by: YAN, Qiang
Published: (2013)

Designing leakage-resilient password entry on head-mounted smart wearable glass devices
by: LI, Yan, et al.
Published: (2020)

Vulnerability analysis of EMAP: An efficient RFID mutual authentication protocol
by: LI, Tieyan, et al.
Published: (2007)

A survey on privacy frameworks for RFID authentication
by: SU, Chunhua, et al.
Published: (2012)

MLD-AD real-time change password script
by: Inamarga, Harold N.
Published: (2007)

EvoPass: Evolvable graphical password against shoulder-surfing attacks
by: YU, Xingjie, et al.
Published: (2017)

Two Robust Remote User Authentication Protocols Using Smart Cards
by: YEH, Kuo-Hui, et al.
Published: (2010)

Coercion Resistance in Authentication Responsibility Shifting
by: GUPTA, Payas, et al.
Published: (2012)

On the Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup
by: LIANG, Bing, et al.
Published: (2009)

Cross-domain password-based authenticated key exchange revisited
by: CHEN, Liqun, et al.
Published: (2013)

The Security and Improvement of An Ultra-Lightweight RFID Authentication Protocol
by: LI, Tieyan, et al.
Published: (2008)

RFID mutual authentication protocols with universally composable security
by: SU, Chunhua, et al.
Published: (2011)

Policy-Based Remote User Authentication From Multi-Biometrics
by: TIAN, Yangguang, et al.
Published: (2023)

Efficient Tag Path Authentication Protocol with Less Tag Memory
by: WANG, Hongbing, et al.
Published: (2016)

Security analysis on a family of ultra-lightweight RFID authentication protocols
by: LI, Tieyan, et al.
Published: (2008)

Exploiting Human Factors in User Authentication
by: GUPTA, Payas
Published: (2013)

Biometric authentication on iPhone and Android: Usability, perceptions, and influences on adoption
by: BHAGAVATULA, Rasekhar, et al.
Published: (2015)

PRESERVING FRESHNESS AND CONTINUITY IN REMOTE BIOMETRIC AUTHENTICATION
by: ANKIT SARKAR
Published: (2017)

Two-level Path Authentication in EPCglobal Network
by: WANG, Hongbing, et al.
Published: (2012)

Robust and universal seamless handover authentication in 5G HetNets
by: ZHANG, Yinghui, et al.
Published: (2021)

BreathPrint: Breathing acoustics-based user authentication
by: CHAUHAN, Jagmohan, et al.
Published: (2017)

A study of content authentication in proxy-enabled multimedia delivery systems: Model, techniques, and applications
by: DENG, Robert H., et al.
Published: (2009)

Towards understanding Android system vulnerabilities: Techniques and insights
by: WU, Daoyuan, et al.
Published: (2019)

New framework of password-based authenticated key exchange from only-one lossy encryption
by: XUE, Haiyang, et al.
Published: (2017)

Virtualization based password protection against malware in untrusted operating systems
by: CHENG, Yueqiang, et al.
Published: (2012)

Analysis and improvement on a biometric-based remote user authentication scheme using smart cards
by: WEN, Fengtong, et al.
Published: (2015)

A secure and effective anonymous user authentication scheme for roaming service in global mobility networks
by: WEN, Fengtong, et al.
Published: (2013)

Security slicing for auditing XML, XPath, and SQL injection vulnerabilities
by: THOME, Julian, et al.
Published: (2015)

Secure Mobile Agents with Controlled Resources
by: ZHANG, Qi, et al.
Published: (2011)