Hitoshi Kokumai

4年前 · 1 分の読書時間 · ~10 ·

ブログ作成
>
ブログ Hitoshi
>
Pictorial Presentation of Phishing Detection by Episodic Image Memory

Pictorial Presentation of Phishing Detection by Episodic Image Memory

Detection of Phishing
by Episodic Image Memory

2-factor authentication schemes, which help servers to detect fake users,
does not help users to detect fake servers

Our own volitional actions based on correct knowledge are needed

Episodic image memory helps

The logic of phishing detection by our episodic image memory is explained in this pictorial slide -  https://www.slideshare.net/HitoshiKokumai/detection-of-phishing-by-episodic-image-memory-243182482 

Here are key takeaways:

It is the phishers that control the screen shown to us. Our own volitional actions based on correct knowledge are needed. In view of the nature of phishing, we find no other ways.

Critical in this scheme is that users are given the freedom of choosing the stage at which they select their secrets; they might select them at the second or third stage. They might also opt to repeat many more fake choices.

Whatever belongs to “our own volitional actions based on correct knowledge” could work as an additional component.

When we build a server-based Expanded Password System, we will have it incorporate this defense layer of phishing detection.


521d3816.png

.

Key References 

Digital Identity for Global Citizens

What We Know for Certain about Authentication Factors

Image-to-Code Conversion by Expanded Password System

Summary and Brief History - Expanded Password System

Proposition on How to Build Sustainable Digital Identity Platform

Additional References

Account Recovery with Expanded Password System

External Body Features Viewed as ‘What We Are’

 History, Current Status and Future Scenarios of Expanded Password System

Negative Security Effect of Biometrics Deployed in Cyberspace

Removal of Passwords and Its Security Effect

Availability-First Approach

Update: Questions and Answers - Expanded Password System and Related Issues (30/June/2020)

 < Videos on YouTube>

Slide: Outline of Expanded Password System (3minutes 2seconds)

Digital Identity for Global Citizens (10minutes - narrated)

Demo: Simplified Operation on Smartphone for consumers (1m41s)

Demo: High-Security Operation on PC for managers (4m28s)

Demo: Simple capture and registration of pictures by users (1m26s)

Slide: Biometrics in Cyber Space - "below-one" factor authentication

< Media Articles Published in 2020 >

Digital Identity – Anything Used Correctly Is Useful https://www.valuewalk.com/2020/05/digital-identity-biometrics-use/

‘Easy-to-Remember’ is one thing ‘Hard-to-Forget’ is another https://www.paymentsjournal.com/easy-to-remember-is-one-thing-hard-to-forget-is-another/

Identity Assurance And Teleworking In Pandemic https://www.informationsecuritybuzz.com/articles/identity-assurance-and



コメント

Hitoshi Kokumaiの記事

ブログを見る
3年前 · 2 分の読書時間

Today's topic is BBC's “Facebook to end use of facial recognition software” · https://www.bbc.com/n ...

3年前 · 2 分の読書時間

Bad guys, who have a quantum computer at hand, would still have to break the part of user authentica ...

3年前 · 2 分の読書時間

Another topic for today is “Passwordless made simple with user empowerment” · https://www.securitym ...

この職種に興味がある方はこちら