A frictionless and secure user authentication in web-based premium applications

Olanrewaju, Rashidah F. and Khan, Burhan Ul Islam and Morshidi, Malik Arman and Anwar, Farhat and Mat Kiah, Miss Laiha (2021) A frictionless and secure user authentication in web-based premium applications. IEEE Access, 9. pp. 129240-129255. ISSN 2169-3536,

Full text not available from this repository.
Official URL: https://doi.org/10.1109/ACCESS.2021.3110310

Abstract

By and large, authentication systems employed for web-based applications primarily utilize conventional username and password-based schemes, which can be compromised easily. Currently, there is an evolution of various complex user authentication schemes based on the sophisticated encryption methodology. However, many of these schemes suffer from either low impact full consequences or offer security at higher resource dependence. Furthermore, most of these schemes don't consider dynamic threat and attack strategies when the clients are exposed to unidentified attack environments. Hence, this paper proposes a secure user authentication mechanism for web applications with a frictionless experience. An automated authentication scheme is designed based on user behavior login events. The uniqueness of user identity is validated in the proposed system at the login interface, followed by implying an appropriate user authentication process. The authentication process is executed under four different login mechanisms, which depend on the profiler and the authenticator function. The profiler uses user behavioral data, including login session time, device location, browser, and details of accessed web services. The system processes these data and generates a user profile via a profiler using the authenticator function. The authenticator provides a login mechanism to the user to perform the authentication process. After successful login attempts, the proposed system updates database for future evaluation in the authentication process. The study outcome shows that the proposed system excels to other authentication schemes for an existing web-based application. The proposed method, when comparatively examined, is found to offer approximately a 10% reduction in delay, 7% faster response time, and 11% minimized memory usage compared with existing authentication schemes for premium web-based applications.

Item Type: Article
Funders: Ministry of Higher Education Malaysia (MOHE) (FRGS19-068-0676) (FRGS/1/2018/ICT01/UIAM/02/1)
Uncontrolled Keywords: Authentication; Security; Privacy; Password; Collaboration; Cloud computing; Browsers; Frictionless experience; internet; security; user authentication; web application; web services; cloud computing
Subjects: Q Science > QA Mathematics > QA75 Electronic computers. Computer science
T Technology > TA Engineering (General). Civil engineering (General)
Divisions: Faculty of Computer Science & Information Technology
Depositing User: Ms. Juhaida Abd Rahim
Date Deposited: 23 Feb 2022 04:48
Last Modified: 23 Feb 2022 04:48
URI: http://eprints.um.edu.my/id/eprint/26846

Actions (login required)

View Item View Item
UM Research Repository is powered by EPrints 3 which is developed by the School of Electronics and Computer Science at the University of Southampton. More information and software credits.