On the need for different security methods on mobile phones

international journal of engineering trends and technology, 2021

In the android mobile ecosphere, data loss and financial loss are the two potential threats facing the current epoch. Both threats have multiple subdivisions and impacts many of the mobile users and organizations. Many users are passionate and thrilled to use various new features introduced by various mobile companies and applications. Without properly evaluating the security capabilities and vulnerabilities, many of them use the various extensive features available in the system. By default, all the devices and applications have different levels of built-in security features, but many of them do not utilize this appropriately or are not aware of these in the right sense. This study has attempted to list the various secured authentication features available in different layers and the type of protection that enables these features. Here, the analyses chart security features in hierarchical order starting from device-level security and then moves on to the application level security and finally fragments itself into an activity or transaction level of security features.

International Journal of Computer Theory and Engineering, 2013

With the rapid growth of mobile phone devices,there is a growing need for user authentication for the protection of data and services, and to promote public trust.This paper explores the perceptions of mobile phone users in the Kingdom of Saudi Arabia (KSA) regarding the security of mobile phone devices. It presents a survey study aiming to determine the preferred authentication technique amongmobile phone users. The questionnaire results indicate that mobile phone users require an advanced level of privacy protection for information stored on their mobile device. The results show that applying biometric authentication can meet the users’ requirements for protecting sensitive information on their mobile device.

In order to investigate some key issues related to mobile phones' security from a user's perspective, this paper explores and presents the results of a survey conducted in the University of Ioannina, Greece according to which 454 participants were asked about quite many key factors concerning various aspects about a possible interception of their mobile phone. The resultants are very interesting and can be considered as a potential guide by various mobile operators for their future technological investments.

Smartphones are the most popular personal electronic devices. They are used for all sorts of purposes, from managing bank accounts to playing games. As smartphone apps and services proliferate, the amount of sensitive data stored on or processed by handheld devices rise as well. This practice entails risks, such as violating users' privacy, stealing users' identities, etc. Particularly, stealing an unlocked device grants full access to sensitive data and applications. In this survey, we examine whether users adopt some basic practices to protect their sensitive personal data themselves, or is there a need to further strengthen their protection? Our statistical analysis assesses smartphone users' security attitudes and practices among different age groups. Finally, we investigate the factors that affect the attitude of users with respect to their practices for the protection of personal data.The results of this study, show that while many smartphone users do take some security precautions, a high percentage (24%) of them still ignores security and privacy risks. In addition, 19,1 % of users do not follow any practices to protect their PINs and Passwords.

Technology and Society (ISTAS), 2010

The generation of young people who do not remember life before the Internet, who grew up surrounded by computing technology and mobile phones, are often referred to as 'digital natives'. This generation has a special affinity to mobile devices -young people often carry their mobile phones with them at all times to keep a constant connection with their friends while also consuming and creating digital media. This paper presents the results of a survey of over 330 young people aged 18 to 25, which attempts to evaluate their use of mobile technology, their attitudes about security and privacy as it relates to mobile phones, as well as their perceptions of different ways how security and privacy could be improved in future mobile devices. Despite a commonly held belief that digital natives are technologically savvy, their self-assessment does not appear to support this statement. Furthermore, despite the respondents' awareness of various threats to security and privacy, very few of them actually take any concrete steps to protect their devices from unauthorized access. This paper discusses these findings and analyzes the views of young people on different authentication technologies.

International Journal of Advanced Computer Science and Applications, 2017

A smartphone has more advanced computing ability and connectivity than basic featured phones. Presently, we are moving from the Internet society to a mobile society where more and more access to the information is required. This has resulted in a mobile security which is no longer immanent, but imperative. Smartphone authentication has received substantial attention of the research community for the past several years because there have been modern developments beyond the classical PINs and passwords making user authentication more challenging. In this paper, we critically analyze the attacks and the vulnerabilities in smartphones' authentication mechanisms. A comparative analysis of different authentication techniques along with the usage of the different authentication methods is discussed which lead the end-user towards choosing the most suitable and customizable authentication technique.

Indonesian Journal of Electrical Engineering and Computer Science

The advancement of computing power on mobile devices and their popularity among people in performing sensitive data exchange is uncovering an urgent need for a highly secure solution than the existing ones. The need for such a security solution persists that should be able to thwart not only the contemporary threats but also offer continued support without bowing down to progression in technology. Though some security solutions have been contemplated, a lack of standardised or absolute security solution which can provide a feasible and secure solution to mobile phones exists. In this paper, a survey based on various biometric and non-biometric access management schemes has been performed. The copious solutions put forward by researchers so far were discovered to fail in traits like user adaptability and efficiency. Each of the works put forward by various researchers has been single-handedly contemplated followed by analysis. Ultimately, open problems and challenges were inferences from the survey conducted.

— In modern days, gadgets are essential part of everyday lives and they enable to access a variety of ubiquitous services. Recently, the availability of these ubiquitous and mobile services has increased due to the different form of access provided by mobile devices, such as Bluetooth and Wi-Fi. In the same trend, the typologies of vulnerabilities exploiting these services and communication channels have boosted as well. Therefore, the presence of malware in mobile platform can seriously impact the end users privacy and security, reducing the end users trust in performing mobile access to its network services. In this, an authentication mechanism is based on screen brightness which prevents and increases security against side channel attacks.

Lecture Notes in Computer Science, 2019

Two-factor authentication provides a significant improvement over the security of traditional password-based authentication by requiring users to provide an additional authentication factor, e.g., a code generated by a security token. In this decade, single password authentication (SPA) schemes are introduced to overcome the challenges of traditional password authentication, which is vulnerable to the offline dictionary, phishing, honeypot, and man-in-the-middle attacks. Unlike classical password-based authentication systems, in SPA schemes the user is required to remember only a single password (and a username) for all her accounts, while the password is protected against the aforementioned attacks in a provably secure manner. In this paper, for the first time, we implement the state-of-the-art mobilebased SPA system of Acar et al. (2013) as a prototype and assess its usability in a lab environment where we compare it against two-factor authentication (where, in both cases, in addition to the password, the user needs access to her mobile device). Our study shows that mobilebased SPA is as easy as, but less intimidating and more secure than twofactor authentication, making it a better alternative for online banking type deployments. Based on our study, we conclude with deployment recommendations and further usability study suggestions.

The usage of sensitive online services and applications such as online banking, e-commerce etc is increasing day by day. These technologies have tremendously improved making our daily life easier. However, these developments have been accompanied by E-piracy where attackers try to get access to services illegally. As sensitive information flow through Internet, they need support for security properties such as authentication, authorization, data confidentiality. Perhaps static password (User ID & password) is the most common and widely accepted authentication method. Online applications need strong password such as a combination of alphanumeric with special characters. In general, having one password for a single service may be easy to remember, but controlling many passwords for different services poses a tedious task on users online applications . Usually users try to use same password for different services or make slight changes in the password which can be easy for attacker to guess adding increased security threat. In order to overcome this, stronger authentication solutions need to be suggested and adapted for services based network.