{"id":"https://openalex.org/W7133490988","doi":"https://doi.org/10.1109/access.2026.3670319","title":"A Secure Augmented Reality (AR)-Based Authentication Mechanism for Automated Teller Machines","display_name":"A Secure Augmented Reality (AR)-Based Authentication Mechanism for Automated Teller Machines","publication_year":2026,"publication_date":"2026-01-01","ids":{"openalex":"https://openalex.org/W7133490988","doi":"https://doi.org/10.1109/access.2026.3670319"},"language":"en","primary_location":{"id":"doi:10.1109/access.2026.3670319","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2026.3670319","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1109/access.2026.3670319","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5051541644","display_name":"Touhid Islam","orcid":"https://orcid.org/0009-0000-3090-8667"},"institutions":[{"id":"https://openalex.org/I133190216","display_name":"Shahjalal University of Science and Technology","ror":"https://ror.org/05hm0vv72","country_code":"BD","type":"education","lineage":["https://openalex.org/I133190216"]}],"countries":["BD"],"is_corresponding":false,"raw_author_name":"Md. Touhid Islam","raw_affiliation_strings":["Shahjalal University of Science and Technology, Sylhet, Bangladesh"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Shahjalal University of Science and Technology, Sylhet, Bangladesh","institution_ids":["https://openalex.org/I133190216"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5028729916","display_name":"Md. Yeasin Ali","orcid":"https://orcid.org/0000-0002-7789-9945"},"institutions":[{"id":"https://openalex.org/I5518804","display_name":"BRAC University","ror":"https://ror.org/00sge8677","country_code":"BD","type":"education","lineage":["https://openalex.org/I5518804"]}],"countries":["BD"],"is_corresponding":false,"raw_author_name":"Md Yeasin Ali","raw_affiliation_strings":["Department of Computer Science and Engineering, BRAC University, Dhaka, Bangladesh"],"raw_orcid":"https://orcid.org/0000-0002-7789-9945","affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, BRAC University, Dhaka, Bangladesh","institution_ids":["https://openalex.org/I5518804"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5106776932","display_name":"Md. Ishmam Tasin","orcid":null},"institutions":[{"id":"https://openalex.org/I5518804","display_name":"BRAC University","ror":"https://ror.org/00sge8677","country_code":"BD","type":"education","lineage":["https://openalex.org/I5518804"]}],"countries":["BD"],"is_corresponding":false,"raw_author_name":"Md. Ishmam Tasin","raw_affiliation_strings":["Department of Computer Science and Engineering, BRAC University, Dhaka, Bangladesh"],"raw_orcid":"https://orcid.org/0009-0002-2581-883X","affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, BRAC University, Dhaka, Bangladesh","institution_ids":["https://openalex.org/I5518804"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5123759785","display_name":"Masum Alam Nahid","orcid":null},"institutions":[{"id":"https://openalex.org/I4210166452","display_name":"21c Consultancy (United Kingdom)","ror":"https://ror.org/05qkm5r52","country_code":"GB","type":"company","lineage":["https://openalex.org/I4210166452"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Md. Masum Alam Nahid","raw_affiliation_strings":["Cryptic Consultancy Ltd., London, U.K"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Cryptic Consultancy Ltd., London, U.K","institution_ids":["https://openalex.org/I4210166452"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5113348998","display_name":"Fairuz Rahaman Chowdhury","orcid":null},"institutions":[{"id":"https://openalex.org/I4210166452","display_name":"21c Consultancy (United Kingdom)","ror":"https://ror.org/05qkm5r52","country_code":"GB","type":"company","lineage":["https://openalex.org/I4210166452"]},{"id":"https://openalex.org/I5518804","display_name":"BRAC University","ror":"https://ror.org/00sge8677","country_code":"BD","type":"education","lineage":["https://openalex.org/I5518804"]}],"countries":["BD","GB"],"is_corresponding":false,"raw_author_name":"Fairuz Rahaman Chowdhury","raw_affiliation_strings":["Cryptic Consultancy Ltd., London, U.K","Department of Computer Science and Engineering, BRAC University, Dhaka, Bangladesh"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Cryptic Consultancy Ltd., London, U.K","institution_ids":["https://openalex.org/I4210166452"]},{"raw_affiliation_string":"Department of Computer Science and Engineering, BRAC University, Dhaka, Bangladesh","institution_ids":["https://openalex.org/I5518804"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5052820694","display_name":"Hossain Shahriar","orcid":"https://orcid.org/0000-0003-1021-7986"},"institutions":[{"id":"https://openalex.org/I83683471","display_name":"University of West Florida","ror":"https://ror.org/002w4zy91","country_code":"US","type":"education","lineage":["https://openalex.org/I83683471"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Hossain Shahriar","raw_affiliation_strings":["Center for Cybersecurity and AI, University of West Florida, Pensacola, FL, USA"],"raw_orcid":"https://orcid.org/0000-0003-1021-7986","affiliations":[{"raw_affiliation_string":"Center for Cybersecurity and AI, University of West Florida, Pensacola, FL, USA","institution_ids":["https://openalex.org/I83683471"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5087047521","display_name":"Farida Chowdhury","orcid":"https://orcid.org/0000-0001-9902-6291"},"institutions":[{"id":"https://openalex.org/I4210166452","display_name":"21c Consultancy (United Kingdom)","ror":"https://ror.org/05qkm5r52","country_code":"GB","type":"company","lineage":["https://openalex.org/I4210166452"]},{"id":"https://openalex.org/I5518804","display_name":"BRAC University","ror":"https://ror.org/00sge8677","country_code":"BD","type":"education","lineage":["https://openalex.org/I5518804"]}],"countries":["BD","GB"],"is_corresponding":false,"raw_author_name":"Farida Chowdhury","raw_affiliation_strings":["Cryptic Consultancy Ltd., London, U.K","Department of Computer Science and Engineering, BRAC University, Dhaka, Bangladesh"],"raw_orcid":"https://orcid.org/0000-0001-9902-6291","affiliations":[{"raw_affiliation_string":"Cryptic Consultancy Ltd., London, U.K","institution_ids":["https://openalex.org/I4210166452"]},{"raw_affiliation_string":"Department of Computer Science and Engineering, BRAC University, Dhaka, Bangladesh","institution_ids":["https://openalex.org/I5518804"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5128104190","display_name":"S M Taiabul Haque","orcid":null},"institutions":[{"id":"https://openalex.org/I5518804","display_name":"BRAC University","ror":"https://ror.org/00sge8677","country_code":"BD","type":"education","lineage":["https://openalex.org/I5518804"]}],"countries":["BD"],"is_corresponding":false,"raw_author_name":"S. M. Taiabul Haque","raw_affiliation_strings":["Department of Computer Science and Engineering, BRAC University, Dhaka, Bangladesh"],"raw_orcid":"https://orcid.org/0000-0002-6740-4216","affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, BRAC University, Dhaka, Bangladesh","institution_ids":["https://openalex.org/I5518804"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5074132400","display_name":"Md Sadek Ferdous","orcid":"https://orcid.org/0000-0002-8361-4870"},"institutions":[{"id":"https://openalex.org/I5518804","display_name":"BRAC University","ror":"https://ror.org/00sge8677","country_code":"BD","type":"education","lineage":["https://openalex.org/I5518804"]}],"countries":["BD"],"is_corresponding":false,"raw_author_name":"Md Sadek Ferdous","raw_affiliation_strings":["Department of Computer Science and Engineering, BRAC University, Dhaka, Bangladesh"],"raw_orcid":"https://orcid.org/0000-0002-8361-4870","affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, BRAC University, Dhaka, Bangladesh","institution_ids":["https://openalex.org/I5518804"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":9,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":{"value":1850,"currency":"USD","value_usd":1850},"apc_paid":{"value":1850,"currency":"USD","value_usd":1850},"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.22859947,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"14","issue":null,"first_page":"39926","last_page":"39948"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.10819999873638153,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.10819999873638153,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12122","display_name":"Physical Unclonable Functions (PUFs) and Hardware Security","score":0.10199999809265137,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11017","display_name":"Chaos-based Image/Signal Encryption","score":0.10180000215768814,"subfield":{"id":"https://openalex.org/subfields/1707","display_name":"Computer Vision and Pattern Recognition"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/augmented-reality","display_name":"Augmented reality","score":0.7336999773979187},{"id":"https://openalex.org/keywords/authentication","display_name":"Authentication (law)","score":0.6118999719619751},{"id":"https://openalex.org/keywords/mechanism","display_name":"Mechanism (biology)","score":0.5166000127792358},{"id":"https://openalex.org/keywords/message-authentication-code","display_name":"Message authentication code","score":0.4059000015258789},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.33739998936653137},{"id":"https://openalex.org/keywords/authentication-protocol","display_name":"Authentication protocol","score":0.31310001015663147}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8123000264167786},{"id":"https://openalex.org/C153715457","wikidata":"https://www.wikidata.org/wiki/Q254183","display_name":"Augmented reality","level":2,"score":0.7336999773979187},{"id":"https://openalex.org/C148417208","wikidata":"https://www.wikidata.org/wiki/Q4825882","display_name":"Authentication (law)","level":2,"score":0.6118999719619751},{"id":"https://openalex.org/C89611455","wikidata":"https://www.wikidata.org/wiki/Q6804646","display_name":"Mechanism (biology)","level":2,"score":0.5166000127792358},{"id":"https://openalex.org/C141492731","wikidata":"https://www.wikidata.org/wiki/Q1052621","display_name":"Message authentication code","level":3,"score":0.4059000015258789},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.38269999623298645},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.3806999921798706},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.33739998936653137},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.33410000801086426},{"id":"https://openalex.org/C21564112","wikidata":"https://www.wikidata.org/wiki/Q4825885","display_name":"Authentication protocol","level":3,"score":0.31310001015663147},{"id":"https://openalex.org/C77618280","wikidata":"https://www.wikidata.org/wiki/Q1155772","display_name":"Scheme (mathematics)","level":2,"score":0.2976999878883362},{"id":"https://openalex.org/C107457646","wikidata":"https://www.wikidata.org/wiki/Q207434","display_name":"Human\u2013computer interaction","level":1,"score":0.29420000314712524},{"id":"https://openalex.org/C108882727","wikidata":"https://www.wikidata.org/wiki/Q2991685","display_name":"Solid modeling","level":2,"score":0.2563999891281128},{"id":"https://openalex.org/C67186912","wikidata":"https://www.wikidata.org/wiki/Q367664","display_name":"Data modeling","level":2,"score":0.2556000053882599},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.25450000166893005}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/access.2026.3670319","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2026.3670319","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:bea2f5824a494d149734b377a312b082","is_oa":true,"landing_page_url":"https://doaj.org/article/bea2f5824a494d149734b377a312b082","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Access, Vol 14, Pp 39926-39948 (2026)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.1109/access.2026.3670319","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2026.3670319","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":48,"referenced_works":["https://openalex.org/W123887798","https://openalex.org/W844453292","https://openalex.org/W1586237437","https://openalex.org/W1592782371","https://openalex.org/W1641508740","https://openalex.org/W1791587663","https://openalex.org/W2015880590","https://openalex.org/W2064423787","https://openalex.org/W2095595785","https://openalex.org/W2119681300","https://openalex.org/W2123776321","https://openalex.org/W2136922540","https://openalex.org/W2155865187","https://openalex.org/W2339674953","https://openalex.org/W2532131292","https://openalex.org/W2610908153","https://openalex.org/W2741095865","https://openalex.org/W2756320651","https://openalex.org/W2790606770","https://openalex.org/W2796696524","https://openalex.org/W2889978033","https://openalex.org/W2890714010","https://openalex.org/W2904720325","https://openalex.org/W2954304301","https://openalex.org/W3004218344","https://openalex.org/W3005789113","https://openalex.org/W3022354136","https://openalex.org/W3032797424","https://openalex.org/W3032799445","https://openalex.org/W3046694141","https://openalex.org/W3096321181","https://openalex.org/W3113710882","https://openalex.org/W3132771497","https://openalex.org/W3139279744","https://openalex.org/W3144411758","https://openalex.org/W3216443764","https://openalex.org/W4235762304","https://openalex.org/W4240786631","https://openalex.org/W4243667233","https://openalex.org/W4313547821","https://openalex.org/W4319865678","https://openalex.org/W4385497765","https://openalex.org/W4392667380","https://openalex.org/W4395029714","https://openalex.org/W4396710615","https://openalex.org/W4399119602","https://openalex.org/W4400020098","https://openalex.org/W4402350191"],"related_works":[],"abstract_inverted_index":{"Personal":[0],"Identification":[1],"Numbers":[2],"(PINs)":[3],"are":[4],"widely":[5],"used":[6],"for":[7],"authentication":[8],"in":[9,18,114,136],"systems":[10],"like":[11],"ATMs":[12],"due":[13],"to":[14,27,65,98,111,202],"their":[15],"simplicity.":[16],"However,":[17],"public":[19],"or":[20,35],"monitored":[21],"environments,":[22],"they":[23],"remain":[24],"highly":[25],"vulnerable":[26],"shoulder-surfing":[28],"attacks":[29],"via":[30],"direct":[31],"observation,":[32],"CCTV":[33],"recording,":[34],"eavesdropping.":[36],"This":[37],"research":[38],"proposes":[39],"an":[40,56],"Augmented":[41],"Reality":[42],"(AR)":[43],"solution":[44],"that":[45,209],"overlays":[46],"a":[47,79,178,193,234,238],"randomized":[48],"PIN":[49,119,139],"layout":[50,120],"on":[51,84],"the":[52,69,94,101,107,124,130,137,142,147,152,161,172,188,204,210,253],"user\u2019s":[53],"mobile,":[54],"creating":[55],"additional":[57],"visual":[58],"security":[59,163,180],"layer":[60],"without":[61],"requiring":[62],"hardware":[63],"modifications":[64],"existing":[66],"ATMs.":[67],"Using":[68],"Design":[70],"Science":[71],"Research":[72],"Methodology,":[73],"we":[74],"define":[75],"system":[76,95,148,212],"requirements":[77,164],"and":[78,157,186,197],"comprehensive":[80],"threat":[81],"model":[82,196],"based":[83],"STRIDE,":[85],"extended":[86],"with":[87,100,129,160,217],"ATM-specific":[88],"scenarios.":[89],"To":[90],"ensure":[91],"real-world":[92],"applicability,":[93],"is":[96,121],"designed":[97],"comply":[99],"ISO-8583":[102],"financial":[103],"messaging":[104],"standard,":[105],"marking":[106],"first":[108],"academic":[109],"effort":[110],"do":[112],"so":[113],"this":[115,244],"context.":[116],"A":[117],"secure":[118],"generated":[122],"using":[123,182,192],"Mersenne":[125],"Twister":[126],"PRNG":[127],"combined":[128],"Fisher-Yates":[131],"shuffle":[132],"algorithm,":[133],"ensuring":[134],"unpredictability":[135],"augmented":[138],"pads.":[140],"Despite":[141],"introduction":[143],"of":[144,154,165,243],"virtual":[145],"pinpad,":[146],"does":[149],"not":[150],"replace":[151],"use":[153,198],"physical":[155],"pinpad":[156],"maintain":[158],"compliance":[159],"logical":[162],"Electronic":[166],"Pinpads":[167],"(EPP)":[168],"as":[169],"defined":[170],"by":[171],"PCI":[173],"Security":[174],"Standards":[175],"Council.We":[176],"perform":[177],"formal":[179],"analysis":[181],"<italic":[183,222],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[184,223,227],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">ProVerif</i>,":[185],"represent":[187],"adversary\u2019s":[189],"state":[190],"progression":[191],"Markov":[194],"Chain":[195],"Monte":[199],"Carlo":[200],"simulations":[201],"quantify":[203],"attacker\u2019s":[205],"success":[206],"probability,":[207],"showing":[208],"proposed":[211],"significantly":[213],"outperforms":[214],"traditional":[215],"ATMs,":[216],"resistance":[218],"increasing":[219],"quadratically":[220],"as:":[221],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">Y</i>":[224],"=":[225],"0.25x<sup":[226],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">2</sup>":[228],"+":[229,231],"0.91x":[230],"0.22.":[232],"Finally,":[233],"user":[235],"study":[236],"confirms":[237],"positive":[239],"attitude":[240],"toward":[241],"adoption":[242],"user-centric":[245],"approach,":[246],"where":[247],"users":[248],"have":[249],"increased":[250],"control":[251],"over":[252],"interface":[254],"while":[255],"entering":[256],"PIN.":[257]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2026-03-05T00:00:00"}