Security Testing of a User-Participating Authentication Scheme Implementation on Web-Based Login System

Authentication is part of the security services. From a variety of authentication methods available today, there is one scheme named user-participation authentication scheme (UPA Scheme) which not only focusing on user authentication, also provide a guarantee of human participation in the authentica...

Ausführliche Beschreibung

Gespeichert in:

Bibliographische Detailangaben
Veröffentlicht in:	IOP conference series. Materials Science and Engineering 2019-04, Vol.508 (1), p.12136
Hauptverfasser:	Akmaluddin, Muhammad, Pramadiv, Yogha Restu
Format:	Artikel
Sprache:	eng
Schlagworte:	Access control Authentication Distance learning Participation Security Security services
Online-Zugang:	Volltext
Tags:	Tag hinzufügen Keine Tags, Fügen Sie den ersten Tag hinzu!

container_end_page
container_issue	1
container_start_page	12136
container_title	IOP conference series. Materials Science and Engineering
container_volume	508
creator	Akmaluddin, Muhammad Pramadiv, Yogha Restu
description	Authentication is part of the security services. From a variety of authentication methods available today, there is one scheme named user-participation authentication scheme (UPA Scheme) which not only focusing on user authentication, also provide a guarantee of human participation in the authentication process. The scheme intended for authentication in online applications such as e-learning, online polls, online ticket-order system, and more. In this study, the implementation of UPA scheme and security testing has been completed. Testing was carried out using OWASP-AT-008 with the result that the UPA scheme had guaranteed human participation, besides it also found weaknesses in the UPA scheme against man-in-the-middle (MITM) attack.
doi_str_mv	10.1088/1757-899X/508/1/012136
format	Article
fullrecord	<record><control><sourceid>proquest_iop_j</sourceid><recordid>TN_cdi_proquest_journals_2560973140</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>2560973140</sourcerecordid><originalsourceid>FETCH-LOGICAL-c354t-d5c994840283742284ed40c856e341e29c244b0e6c6ee5d24f698315bd8e616b3</originalsourceid><addsrcrecordid>eNqFkF1LwzAUhoMoOKd_QQreeFOX76aXc0wdTBS2oXehTU-3jvXDpL3YvzezMhEEIXBy3rzvOeRB6JrgO4KVGpFIRKGK4_eRwL4bYUIJkydocHw4Pd4VOUcXzm0xlhHneIDWCzCdLdp9sATXFtU6qPMgCVYObPia2LYwRZN86eOu3UDlBd_WVbAwGyghmJXNzteq7VV_3iAN7xMHWTCv14U37l0L5SU6y5Odg6vvOkSrh-ly8hTOXx5nk_E8NEzwNsyEiWOuOKaKRZxSxSHj2CghgXECNDaU8xSDNBJAZJTnMlaMiDRTIIlM2RDd9HMbW390_kt6W3e28is1FRLHESMce5fsXcbWzlnIdWOLMrF7TbA-QNUHXvrATnuomugeqg_SPljUzc_kf0O3f4SeF9NfNt1kOfsESoqGXg</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>2560973140</pqid></control><display><type>article</type><title>Security Testing of a User-Participating Authentication Scheme Implementation on Web-Based Login System</title><source>IOP Publishing Free Content</source><source>Institute of Physics IOPscience extra</source><source>EZB-FREE-00999 freely available EZB journals</source><source>Free Full-Text Journals in Chemistry</source><creator>Akmaluddin, Muhammad ; Pramadiv, Yogha Restu</creator><creatorcontrib>Akmaluddin, Muhammad ; Pramadiv, Yogha Restu</creatorcontrib><description>Authentication is part of the security services. From a variety of authentication methods available today, there is one scheme named user-participation authentication scheme (UPA Scheme) which not only focusing on user authentication, also provide a guarantee of human participation in the authentication process. The scheme intended for authentication in online applications such as e-learning, online polls, online ticket-order system, and more. In this study, the implementation of UPA scheme and security testing has been completed. Testing was carried out using OWASP-AT-008 with the result that the UPA scheme had guaranteed human participation, besides it also found weaknesses in the UPA scheme against man-in-the-middle (MITM) attack.</description><identifier>ISSN: 1757-8981</identifier><identifier>ISSN: 1757-899X</identifier><identifier>EISSN: 1757-899X</identifier><identifier>DOI: 10.1088/1757-899X/508/1/012136</identifier><language>eng</language><publisher>Bristol: IOP Publishing</publisher><subject>Access control ; Authentication ; Distance learning ; Participation ; Security ; Security services</subject><ispartof>IOP conference series. Materials Science and Engineering, 2019-04, Vol.508 (1), p.12136</ispartof><rights>Published under licence by IOP Publishing Ltd</rights><rights>2019. This work is published under http://creativecommons.org/licenses/by/3.0/ (the “License”). Notwithstanding the ProQuest Terms and Conditions, you may use this content in accordance with the terms of the License.</rights><lds50>peer_reviewed</lds50><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed><cites>FETCH-LOGICAL-c354t-d5c994840283742284ed40c856e341e29c244b0e6c6ee5d24f698315bd8e616b3</cites></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktopdf>$$Uhttps://iopscience.iop.org/article/10.1088/1757-899X/508/1/012136/pdf$$EPDF$$P50$$Giop$$Hfree_for_read</linktopdf><link.rule.ids>314,776,780,27903,27904,38847,38869,53818,53845</link.rule.ids></links><search><creatorcontrib>Akmaluddin, Muhammad</creatorcontrib><creatorcontrib>Pramadiv, Yogha Restu</creatorcontrib><title>Security Testing of a User-Participating Authentication Scheme Implementation on Web-Based Login System</title><title>IOP conference series. Materials Science and Engineering</title><addtitle>IOP Conf. Ser.: Mater. Sci. Eng</addtitle><description>Authentication is part of the security services. From a variety of authentication methods available today, there is one scheme named user-participation authentication scheme (UPA Scheme) which not only focusing on user authentication, also provide a guarantee of human participation in the authentication process. The scheme intended for authentication in online applications such as e-learning, online polls, online ticket-order system, and more. In this study, the implementation of UPA scheme and security testing has been completed. Testing was carried out using OWASP-AT-008 with the result that the UPA scheme had guaranteed human participation, besides it also found weaknesses in the UPA scheme against man-in-the-middle (MITM) attack.</description><subject>Access control</subject><subject>Authentication</subject><subject>Distance learning</subject><subject>Participation</subject><subject>Security</subject><subject>Security services</subject><issn>1757-8981</issn><issn>1757-899X</issn><issn>1757-899X</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2019</creationdate><recordtype>article</recordtype><sourceid>O3W</sourceid><sourceid>ABUWG</sourceid><sourceid>AFKRA</sourceid><sourceid>AZQEC</sourceid><sourceid>BENPR</sourceid><sourceid>CCPQU</sourceid><sourceid>DWQXO</sourceid><recordid>eNqFkF1LwzAUhoMoOKd_QQreeFOX76aXc0wdTBS2oXehTU-3jvXDpL3YvzezMhEEIXBy3rzvOeRB6JrgO4KVGpFIRKGK4_eRwL4bYUIJkydocHw4Pd4VOUcXzm0xlhHneIDWCzCdLdp9sATXFtU6qPMgCVYObPia2LYwRZN86eOu3UDlBd_WVbAwGyghmJXNzteq7VV_3iAN7xMHWTCv14U37l0L5SU6y5Odg6vvOkSrh-ly8hTOXx5nk_E8NEzwNsyEiWOuOKaKRZxSxSHj2CghgXECNDaU8xSDNBJAZJTnMlaMiDRTIIlM2RDd9HMbW390_kt6W3e28is1FRLHESMce5fsXcbWzlnIdWOLMrF7TbA-QNUHXvrATnuomugeqg_SPljUzc_kf0O3f4SeF9NfNt1kOfsESoqGXg</recordid><startdate>20190401</startdate><enddate>20190401</enddate><creator>Akmaluddin, Muhammad</creator><creator>Pramadiv, Yogha Restu</creator><general>IOP Publishing</general><scope>O3W</scope><scope>TSCCA</scope><scope>AAYXX</scope><scope>CITATION</scope><scope>8FE</scope><scope>8FG</scope><scope>ABJCF</scope><scope>ABUWG</scope><scope>AFKRA</scope><scope>AZQEC</scope><scope>BENPR</scope><scope>BGLVJ</scope><scope>CCPQU</scope><scope>D1I</scope><scope>DWQXO</scope><scope>HCIFZ</scope><scope>KB.</scope><scope>L6V</scope><scope>M7S</scope><scope>PDBOC</scope><scope>PIMPY</scope><scope>PQEST</scope><scope>PQQKQ</scope><scope>PQUKI</scope><scope>PRINS</scope><scope>PTHSS</scope></search><sort><creationdate>20190401</creationdate><title>Security Testing of a User-Participating Authentication Scheme Implementation on Web-Based Login System</title><author>Akmaluddin, Muhammad ; Pramadiv, Yogha Restu</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c354t-d5c994840283742284ed40c856e341e29c244b0e6c6ee5d24f698315bd8e616b3</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2019</creationdate><topic>Access control</topic><topic>Authentication</topic><topic>Distance learning</topic><topic>Participation</topic><topic>Security</topic><topic>Security services</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Akmaluddin, Muhammad</creatorcontrib><creatorcontrib>Pramadiv, Yogha Restu</creatorcontrib><collection>IOP Publishing Free Content</collection><collection>IOPscience (Open Access)</collection><collection>CrossRef</collection><collection>ProQuest SciTech Collection</collection><collection>ProQuest Technology Collection</collection><collection>Materials Science & Engineering Collection</collection><collection>ProQuest Central (Alumni Edition)</collection><collection>ProQuest Central UK/Ireland</collection><collection>ProQuest Central Essentials</collection><collection>ProQuest Central</collection><collection>Technology Collection</collection><collection>ProQuest One Community College</collection><collection>ProQuest Materials Science Collection</collection><collection>ProQuest Central Korea</collection><collection>SciTech Premium Collection</collection><collection>Materials Science Database</collection><collection>ProQuest Engineering Collection</collection><collection>Engineering Database</collection><collection>Materials Science Collection</collection><collection>Publicly Available Content Database</collection><collection>ProQuest One Academic Eastern Edition (DO NOT USE)</collection><collection>ProQuest One Academic</collection><collection>ProQuest One Academic UKI Edition</collection><collection>ProQuest Central China</collection><collection>Engineering Collection</collection><jtitle>IOP conference series. Materials Science and Engineering</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Akmaluddin, Muhammad</au><au>Pramadiv, Yogha Restu</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>Security Testing of a User-Participating Authentication Scheme Implementation on Web-Based Login System</atitle><jtitle>IOP conference series. Materials Science and Engineering</jtitle><addtitle>IOP Conf. Ser.: Mater. Sci. Eng</addtitle><date>2019-04-01</date><risdate>2019</risdate><volume>508</volume><issue>1</issue><spage>12136</spage><pages>12136-</pages><issn>1757-8981</issn><issn>1757-899X</issn><eissn>1757-899X</eissn><abstract>Authentication is part of the security services. From a variety of authentication methods available today, there is one scheme named user-participation authentication scheme (UPA Scheme) which not only focusing on user authentication, also provide a guarantee of human participation in the authentication process. The scheme intended for authentication in online applications such as e-learning, online polls, online ticket-order system, and more. In this study, the implementation of UPA scheme and security testing has been completed. Testing was carried out using OWASP-AT-008 with the result that the UPA scheme had guaranteed human participation, besides it also found weaknesses in the UPA scheme against man-in-the-middle (MITM) attack.</abstract><cop>Bristol</cop><pub>IOP Publishing</pub><doi>10.1088/1757-899X/508/1/012136</doi><tpages>6</tpages><oa>free_for_read</oa></addata></record>
fulltext	fulltext
identifier	ISSN: 1757-8981
ispartof	IOP conference series. Materials Science and Engineering, 2019-04, Vol.508 (1), p.12136
issn	1757-8981 1757-899X 1757-899X
language	eng
recordid	cdi_proquest_journals_2560973140
source	IOP Publishing Free Content; Institute of Physics IOPscience extra; EZB-FREE-00999 freely available EZB journals; Free Full-Text Journals in Chemistry
subjects	Access control Authentication Distance learning Participation Security Security services
title	Security Testing of a User-Participating Authentication Scheme Implementation on Web-Based Login System
url	https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-26T16%3A48%3A23IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_iop_j&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=Security%20Testing%20of%20a%20User-Participating%20Authentication%20Scheme%20Implementation%20on%20Web-Based%20Login%20System&rft.jtitle=IOP%20conference%20series.%20Materials%20Science%20and%20Engineering&rft.au=Akmaluddin,%20Muhammad&rft.date=2019-04-01&rft.volume=508&rft.issue=1&rft.spage=12136&rft.pages=12136-&rft.issn=1757-8981&rft.eissn=1757-899X&rft_id=info:doi/10.1088/1757-899X/508/1/012136&rft_dat=%3Cproquest_iop_j%3E2560973140%3C/proquest_iop_j%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=2560973140&rft_id=info:pmid/&rfr_iscdi=true