The contribution of this paper is therefore to provide a security scheme seamlessly integrating all classical authentication factors plus a location factor into one single system in a real environment with a security and usability focus. A case study of an implementation of a secure time attendance system that applies this approach is presented. This paper proposes the use of all possible authentication factors, called comprehensive-factor authentication, which can maintain the required security level and usability in real-world implementation. However, more factors cannot guarantee usability in real usage because human and other non-technical factors are involved. In information security, it is widely accepted that the more authentication factors are used, the higher the security level.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |