Secure PIN-entry method using one-time PIN (OTP)
Document Type
Article
Publication Date
1-1-2023
Abstract
The regular PIN-entry method has been still the most common method of authentication for systems and networks. However, PINs are easy to be captured through various attacks, including shoulder-surfing, video-recording, and spyware. This could be attributed to the involuntary nature of entering the original PIN during authentication. In this paper, we employ an indirect input method that utilizes the addition mod 10 and a mini-challenge keypad in order to produce a one-time PIN (OTP) that obscures the original PIN. The results of our user study manifest that the proposed PIN-entry method provides better security than the existing PIN-entry methods while maintaining an acceptable level of usability. Moreover, the user feedback fully support the use of the proposed PIN-entry method in critical-security situations.
Keywords
Access control, Authentication, Spyware, Security, Visualization, Biometrics (access control), Usability, Video recording, PIN entry, Password authentication, OTP, Shoulder surfing, Observation attack, Video recording, Spyware attack
Divisions
Computer
Funders
Hadhramout University and Hadhramout Foundation, Yemen
Publication Title
IEEE Access
Volume
11
Publisher
Institute of Electrical and Electronics Engineers
Publisher Location
445 HOES LANE, PISCATAWAY, NJ 08855-4141 USA