Browse > Article
http://dx.doi.org/10.3745/KIPSTC.2011.18C.5.327

A Location based Two-Factor L-OTP Protocol  

Seo, Hwa-Jeong (부산대학교 컴퓨터공학과)
Kim, Ho-Won (부산대학교 정보컴퓨터공학부)
Abstract
After releasing the smart phone equipping the strong computational capability compared to traditional mobil phone, a field of services, which is available on the personal computers, is expanded to smart phone. The development of technology reduces the limited service utilization on time and space but it has a venerability exposing an information to malicious user. Especially we need to more attention when using the financial services which communicate the user's private information. To solve the security problem, OTP(One Time Pad), which uses a private key for a session, is recommended. OTP techniques in smart phone having focused on traditional environments have been proposed and implemented. However, security over mobile environments is more vulnerable to attack and has restriction on resources than traditional system. For this reason, definition of proper conceptual OTP on smart phone is required. In the paper, we present the L-OTP(Location-OTP) protocol, using T-OTP(Time One Time Pad) technique with location information. Proposal generates the OTP using unique location information which is obtained in smart phone.
Keywords
OTP; Location; Mobil;
Citations & Related Records
Times Cited By KSCI : 1  (Citation Analysis)
연도 인용수 순위
1 IETF, "TOTP: Time-based One-Time Password Algorithm," 2010.
2 Kupper, A.: Location-.based Services -. Fundamentals and Operation. John Wiley & Sons, Chichester 2005.
3 F Henry, R Henry, G Rooss, "Hybrid positioning system", 2006. 2.
4 금융보안연구원, "모바일OTP 보안성 분석서", 2011. 3.
5 제갈병직, "스마트폰 시장과 모바일OS 동향", Market Trends, Vol.36, 2010.
6 김기영, 강동호, "개방형 모바일 환경에서 스마트폰 보안 기술", 정보보호학회지, 제19권 5호, 2009. 12.