Please use this identifier to cite or link to this item: https://hdl.handle.net/11147/13215
Full metadata record
DC FieldValueLanguage
dc.contributor.authorUysal, Ertanen_US
dc.contributor.authorAkgün, Meteen_US
dc.date.accessioned2023-03-09T07:20:16Z-
dc.date.available2023-03-09T07:20:16Z-
dc.date.issued2023-02-
dc.identifier.urihttps://doi.org/10.1371/journal.pone.0280181-
dc.identifier.urihttps://hdl.handle.net/11147/13215-
dc.description.abstractOne-time password (OTP) mechanisms are widely used to strengthen authentication processes. In time-based one-time password (TOTP) mechanisms, the client and server store common secrets. However, once the server is compromised, the client’s secrets are easy to obtain. To solve this issue, hash-chain-based second-factor authentication protocols have been proposed. However, these protocols suffer from latency in the generation of OTPs on the client side because of the hash-chain traversal. Secondly, they can generate only a limited number of OTPs as it depends on the length of the hash-chain. In this paper, we propose a second-factor authentication protocol that utilizes Physically Unclonable Functions (PUFs) to overcome these problems. In the proposed protocol, PUFs are used to store the secrets of the clients securely on the server. In case of server compromise, the attacker cannot obtain the seeds of clients’ secrets and can not generate valid OTPs to impersonate the clients. In the case of physical attacks, including side-channel attacks on the server side, our protocol has a mechanism that prevents attackers from learning the secrets of a client interacting with the server. Furthermore, our protocol does not incur any client-side delay in OTP generation.en_US
dc.language.isoenen_US
dc.publisherPublic Library of Scienceen_US
dc.relation.ispartofPLoS ONEen_US
dc.rightsinfo:eu-repo/semantics/openAccessen_US
dc.subjectAuthenticationen_US
dc.subjectPhysical unclonable functionen_US
dc.subjectFingerprint recognitionen_US
dc.subjectOne-time passwords (OTPs)en_US
dc.titleP/Key: PUF based second factor authenticationen_US
dc.typeArticleen_US
dc.authorid0000-0001-9513-4578en_US
dc.authorid0000-0003-4088-2784en_US
dc.institutionauthorUysal, Ertanen_US
dc.institutionauthorAkgün, Meteen_US
dc.departmentİzmir Institute of Technology. Computer Engineeringen_US
dc.identifier.wosWOS:000929724500036en_US
dc.identifier.scopus2-s2.0-85147834320en_US
dc.relation.publicationcategoryMakale - Uluslararası Hakemli Dergi - Kurum Öğretim Elemanıen_US
dc.identifier.doi10.1371/journal.pone.0280181-
dc.identifier.pmid36758004-
dc.contributor.affiliation01. Izmir Institute of Technologyen_US
dc.contributor.affiliation01. Izmir Institute of Technologyen_US
dc.relation.issn1932-6203en_US
dc.description.volume18en_US
dc.description.issue2en_US
dc.identifier.scopusqualityQ1-
item.openairecristypehttp://purl.org/coar/resource_type/c_18cf-
item.cerifentitytypePublications-
item.fulltextWith Fulltext-
item.languageiso639-1en-
item.grantfulltextopen-
item.openairetypeArticle-
crisitem.author.dept01. Izmir Institute of Technology-
crisitem.author.dept03.04. Department of Computer Engineering-
Appears in Collections:Computer Engineering / Bilgisayar Mühendisliği
Scopus İndeksli Yayınlar Koleksiyonu / Scopus Indexed Publications Collection
WoS İndeksli Yayınlar Koleksiyonu / WoS Indexed Publications Collection
Files in This Item:
File Description SizeFormat 
journal.pone.0280181.pdfArticle947.75 kBAdobe PDFView/Open
Show simple item record



CORE Recommender

SCOPUSTM   
Citations

1
checked on Apr 5, 2024

WEB OF SCIENCETM
Citations

1
checked on Mar 23, 2024

Page view(s)

76
checked on Apr 15, 2024

Download(s)

32
checked on Apr 15, 2024

Google ScholarTM

Check




Altmetric


Items in GCRIS Repository are protected by copyright, with all rights reserved, unless otherwise indicated.