出版社:Academy & Industry Research Collaboration Center (AIRCC)
摘要:Adaptive authentication is a risk-based authentication that identifies high-risk and suspiciousillegitimate login attempts. User past login records which implicitly contains attribute factorscontext information are used to establish user behavior profile. Later if the user logins underdifferent environmental context from that established profile, the identity of the user may bequestioned. The system may challenge the user to present additional authentication method toget authenticated. We implemented such adaptive authentication system in our productionserver and collected user login records for more than six months. In this paper, we presents theanalysis of the user login profile with regards to attribute factors such as geographical locationand time of login. We also developed testbed system that uses the collected real data to evaluatethe system for different ratio threshold values.
关键词:Adaptive Authentication; Web Application; Testbed Analysis
