Transaction Authentication Using HMAC-Based One-Time Password and QR Code

2015 ◽  
pp. 93-98 ◽  
Author(s):  
Puchong Subpratatsavee ◽  
Pramote Kuacharoen
Keyword(s):  
Qr Code ◽  
One Time Password

scholarly journals A Secure and Efficient Multi-Factor Authentication Algorithm for Mobile Money Applications

2021 ◽  
Vol 13 (12) ◽  
pp. 299
Author(s):  
Guma Ali ◽  
Mussa Ally Dida ◽  
Anael Elikana Sam
Keyword(s):  
Security Analysis ◽  
Public Key Cryptography ◽  
Personal Identification ◽  
Qr Code ◽  
Security Attacks ◽  
Mobile Money ◽  
Novel Approach ◽  
Overall Performance ◽  
One Time Password ◽  
Hashing Algorithm

With the expansion of smartphone and financial technologies (FinTech), mobile money emerged to improve financial inclusion in many developing nations. The majority of the mobile money schemes used in these nations implement two-factor authentication (2FA) as the only means of verifying mobile money users. These 2FA schemes are vulnerable to numerous security attacks because they only use a personal identification number (PIN) and subscriber identity module (SIM). This study aims to develop a secure and efficient multi-factor authentication algorithm for mobile money applications. It uses a novel approach combining PIN, a one-time password (OTP), and a biometric fingerprint to enforce extra security during mobile money authentication. It also uses a biometric fingerprint and quick response (QR) code to confirm mobile money withdrawal. The security of the PIN and OTP is enforced by using secure hashing algorithm-256 (SHA-256), a biometric fingerprint by Fast IDentity Online (FIDO) that uses a standard public key cryptography technique (RSA), and Fernet encryption to secure a QR code and the records in the databases. The evolutionary prototyping model was adopted when developing the native mobile money application prototypes to prove that the algorithm is feasible and provides a higher degree of security. The developed applications were tested, and a detailed security analysis was conducted. The results show that the proposed algorithm is secure, efficient, and highly effective against the various threat models. It also offers secure and efficient authentication and ensures data confidentiality, integrity, non-repudiation, user anonymity, and privacy. The performance analysis indicates that it achieves better overall performance compared with the existing mobile money systems.

scholarly journals Metode Absensi Mahasiswa berbasis QR Code dan Time-Based One-Time Password

2021 ◽  
Vol 7 (2) ◽  
pp. 29-34
Author(s):  
Aprianti Nanda Sari ◽  
Trisna Gelar Abdillah
Keyword(s):  
Qr Code ◽  
One Time Password

scholarly journals Pembangunan Aplikasi Transaksi Menu Di Kedai XYZ Kopi Menggunakan QR-Code Dan One Time Password Berbasis E-Wallet

2020 ◽  
Vol 10 (3) ◽  
pp. 113-122
Author(s):  
Fazri Muhamad Kurnia ◽  
Keyword(s):  
Qr Code ◽  
Electronic Money ◽  
Authentication Code ◽  
Coffee Shop ◽  
Transaction Process ◽  
Cash Payment ◽  
Long Time ◽  
Speed Up ◽  
One Time Password ◽  
The One

The payment process using electronic money is a non-cash payment method based on E-Wallet aimed at facilitating users in transact. The transaction process at the coffee shop XYZ is still done conventionally and takes a long time, causing long queues. The research carried out aims to speed up the transaction process at XYZ coffee shops. The method used in this research is prototype. An alternative solution to the transaction process is to utilize the E-Wallet and QR-Code through the customer's smartphone. This study utilizes Go-Pay E-Wallet access as a means of payment through the Midtrans Payment Gateway and uses the One Time Password code as a login method on the system. Qr-code scanning to place orders can be done quickly which is around 3,551 milliseconds. Quessioner results distributed to 20 customers showed the following data, around 90% agreed on the use of e-wallet as an alternative payment, around 87% agreed on the statement of the use of e-wallet was able to reduce the slow transaction process, about 79% agreed to the statement that this system facilitates the transaction process, as well as 79% level of approval of the use of an authentication code through a mobile number that makes it easy to enter the application. The results showed that the system built can speed up the transaction process.

scholarly journals Offline Transaction System using TOTP

2020 ◽  
Vol 9 (5) ◽  
pp. 706-710
Keyword(s):  
Short Distance ◽  
Current System ◽  
Qr Code ◽  
One Time Password ◽  
New System

This paper proposes a new system which can be used to make short distance transactions Offline. The method discussed in this paper provides an in depth explanation of the project and how TOTP (Time-Based One Time Password) is used to carry out authentication which is completely offline. This idea is implemented since there is no current system which facilitates offline payments to occur. The project uses various functions such as Hashing (using SHA-1) and Audio QR to ensure security while it works offline. The project employs a QR code which encodes the user’s ID, TOTP token and the amount to be transferred to the receiver. The receiver then scans the QR code and decodes the contents, authenticates the user, checks the balance, if it is sufficient then the transaction occurs successfully. This system can be used in different scenarios such as shopping, travelling, restaurants etc.

Internet Banking Transaction Authentication Using Mobile One-Time Password and QR Code

2015 ◽  
Vol 21 (10) ◽  
pp. 3189-3193 ◽  
Author(s):  
Puchong Subpratatsavee ◽  
Pramote Kuacharoen
Keyword(s):  
Internet Banking ◽  
Qr Code ◽  
One Time Password

Multifactor Authentication Using a QR Code and a One-Time Password

2014 ◽  
Vol 10 (3) ◽  
pp. 483-490 ◽  
Author(s):  
Jyoti Malik ◽  
Dhiraj Girdhar ◽  
Ratna Dahiya ◽  
G. Sainarayanan
Keyword(s):  
Qr Code ◽  
Multifactor Authentication ◽  
One Time Password

scholarly journals TOTP Based Authentication Using QR Code For Gateway Entry System

2020 ◽  
Vol 9 (05) ◽  
pp. 25023-25028
Author(s):  
Abhishek Arvind ◽  
Pradyumna Mahajan ◽  
Rishikesh Chalke
Keyword(s):  
Short Duration ◽  
Qr Code ◽  
Quick Response ◽  
Response Code ◽  
Unauthorized Access ◽  
Server Side ◽  
Secure Information ◽  
Quick Response Code ◽  
One Time Password ◽  
Gain Access

In today’s scenario, there are various ways the attackers can gain access to secure information and use it for their own benefit. In this paper, we aim to improve the gateway entry system by providing more security. This system involves the use of TOTP (Time-Based One-Time Password) with QR (Quick Response) code. A QR code is a 2D matrix barcode where a large amount of information can be stored in a compact manner. TOTP is a temporary password that is active for a short duration of time. For every 30 seconds, an OTP is generated. A QR code is generated which contains the TOTP. The QR code is scanned and the server checks the TOTP generated on the server-side. If this TOTP matches with the TOTP in the QR code then the user is allowed to enter. This method increases the security of the system and prevents unauthorized access.

Sign in / Sign up

Export Citation Format

Share Document