{"id":"https://openalex.org/W7091476489","doi":"https://doi.org/10.1109/tifs.2025.3622084","title":"User-Autonomous Multi-Factor Authentication Supporting Arbitrary Factor Configurations","display_name":"User-Autonomous Multi-Factor Authentication Supporting Arbitrary Factor Configurations","publication_year":2025,"publication_date":"2025-01-01","ids":{"openalex":"https://openalex.org/W7091476489","doi":"https://doi.org/10.1109/tifs.2025.3622084"},"language":"en","primary_location":{"id":"doi:10.1109/tifs.2025.3622084","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tifs.2025.3622084","pdf_url":null,"source":{"id":"https://openalex.org/S61310614","display_name":"IEEE Transactions on Information Forensics and Security","issn_l":"1556-6013","issn":["1556-6013","1556-6021"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Information Forensics and Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":null,"display_name":"Wenting Li","orcid":"https://orcid.org/0000-0002-2613-8257"},"institutions":[{"id":"https://openalex.org/I4210135483","display_name":"Beijing Institute of Graphic Communication","ror":"https://ror.org/03yg3v757","country_code":"CN","type":"education","lineage":["https://openalex.org/I4210135483"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Wenting Li","raw_affiliation_strings":["School of Information Engineering, Beijing Institute of Graphic Communication, Beijing, China"],"raw_orcid":"https://orcid.org/0000-0002-2613-8257","affiliations":[{"raw_affiliation_string":"School of Information Engineering, Beijing Institute of Graphic Communication, Beijing, China","institution_ids":["https://openalex.org/I4210135483"]}]},{"author_position":"middle","author":{"id":null,"display_name":"Haibo Cheng","orcid":null},"institutions":[{"id":"https://openalex.org/I4210092262","display_name":"Ministry of Education","ror":"https://ror.org/00dh5gw98","country_code":"RO","type":"funder","lineage":["https://openalex.org/I2799732796","https://openalex.org/I4210092262"]},{"id":"https://openalex.org/I4210128818","display_name":"Institute of Software","ror":"https://ror.org/033dfsn42","country_code":"CN","type":"facility","lineage":["https://openalex.org/I19820366","https://openalex.org/I4210128818"]}],"countries":["CN","RO"],"is_corresponding":false,"raw_author_name":"Haibo Cheng","raw_affiliation_strings":["National Engineering Research Center for Software Engineering and Key Laboratory of High Confidence Software Technologies (Peking University), Ministry of Education, Beijing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"National Engineering Research Center for Software Engineering and Key Laboratory of High Confidence Software Technologies (Peking University), Ministry of Education, Beijing, China","institution_ids":["https://openalex.org/I4210128818","https://openalex.org/I4210092262"]}]},{"author_position":"last","author":{"id":null,"display_name":"Kaitai Liang","orcid":"https://orcid.org/0000-0003-0262-7678"},"institutions":[{"id":"https://openalex.org/I155660961","display_name":"University of Turku","ror":"https://ror.org/05vghhr25","country_code":"FI","type":"education","lineage":["https://openalex.org/I155660961"]}],"countries":["FI"],"is_corresponding":false,"raw_author_name":"Kaitai Liang","raw_affiliation_strings":["Faculty of Technology, University of Turku, Turku, Finland"],"raw_orcid":"https://orcid.org/0000-0003-0262-7678","affiliations":[{"raw_affiliation_string":"Faculty of Technology, University of Turku, Turku, Finland","institution_ids":["https://openalex.org/I155660961"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.60414328,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"20","issue":null,"first_page":"11544","last_page":"11559"},"is_retracted":false,"is_paratext":false,"is_xpac":true,"primary_topic":{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.18709999322891235,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.18709999322891235,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11504","display_name":"Advanced Authentication Protocols Security","score":0.1550000011920929,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.11299999803304672,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/usability","display_name":"Usability","score":0.5968000292778015},{"id":"https://openalex.org/keywords/password","display_name":"Password","score":0.578000009059906},{"id":"https://openalex.org/keywords/authentication","display_name":"Authentication (law)","score":0.5778999924659729},{"id":"https://openalex.org/keywords/multi-factor-authentication","display_name":"Multi-factor authentication","score":0.5777999758720398},{"id":"https://openalex.org/keywords/usable","display_name":"USable","score":0.4361000061035156},{"id":"https://openalex.org/keywords/factor","display_name":"Factor (programming language)","score":0.42579999566078186},{"id":"https://openalex.org/keywords/authentication-protocol","display_name":"Authentication protocol","score":0.40139999985694885},{"id":"https://openalex.org/keywords/cryptographic-protocol","display_name":"Cryptographic protocol","score":0.38989999890327454},{"id":"https://openalex.org/keywords/secret-sharing","display_name":"Secret sharing","score":0.38359999656677246},{"id":"https://openalex.org/keywords/message-authentication-code","display_name":"Message authentication code","score":0.36039999127388}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8628000020980835},{"id":"https://openalex.org/C170130773","wikidata":"https://www.wikidata.org/wiki/Q216378","display_name":"Usability","level":2,"score":0.5968000292778015},{"id":"https://openalex.org/C109297577","wikidata":"https://www.wikidata.org/wiki/Q161157","display_name":"Password","level":2,"score":0.578000009059906},{"id":"https://openalex.org/C148417208","wikidata":"https://www.wikidata.org/wiki/Q4825882","display_name":"Authentication (law)","level":2,"score":0.5778999924659729},{"id":"https://openalex.org/C194699767","wikidata":"https://www.wikidata.org/wiki/Q7878662","display_name":"Multi-factor authentication","level":4,"score":0.5777999758720398},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5472000241279602},{"id":"https://openalex.org/C2780615836","wikidata":"https://www.wikidata.org/wiki/Q2471869","display_name":"USable","level":2,"score":0.4361000061035156},{"id":"https://openalex.org/C2781039887","wikidata":"https://www.wikidata.org/wiki/Q1391724","display_name":"Factor (programming language)","level":2,"score":0.42579999566078186},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.4117000102996826},{"id":"https://openalex.org/C21564112","wikidata":"https://www.wikidata.org/wiki/Q4825885","display_name":"Authentication protocol","level":3,"score":0.40139999985694885},{"id":"https://openalex.org/C33884865","wikidata":"https://www.wikidata.org/wiki/Q1254335","display_name":"Cryptographic protocol","level":3,"score":0.38989999890327454},{"id":"https://openalex.org/C3087436","wikidata":"https://www.wikidata.org/wiki/Q1386603","display_name":"Secret sharing","level":3,"score":0.38359999656677246},{"id":"https://openalex.org/C141492731","wikidata":"https://www.wikidata.org/wiki/Q1052621","display_name":"Message authentication code","level":3,"score":0.36039999127388},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.3569999933242798},{"id":"https://openalex.org/C2780385302","wikidata":"https://www.wikidata.org/wiki/Q367158","display_name":"Protocol (science)","level":3,"score":0.3540000021457672},{"id":"https://openalex.org/C121822524","wikidata":"https://www.wikidata.org/wiki/Q5157582","display_name":"Computer security model","level":2,"score":0.3424000144004822},{"id":"https://openalex.org/C131672422","wikidata":"https://www.wikidata.org/wiki/Q852594","display_name":"Provable security","level":3,"score":0.32280001044273376},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.3206000030040741},{"id":"https://openalex.org/C184660509","wikidata":"https://www.wikidata.org/wiki/Q462624","display_name":"Shared secret","level":3,"score":0.31220000982284546},{"id":"https://openalex.org/C77618280","wikidata":"https://www.wikidata.org/wiki/Q1155772","display_name":"Scheme (mathematics)","level":2,"score":0.3111000061035156},{"id":"https://openalex.org/C131129157","wikidata":"https://www.wikidata.org/wiki/Q1059963","display_name":"Challenge\u2013response authentication","level":4,"score":0.29499998688697815},{"id":"https://openalex.org/C2780428219","wikidata":"https://www.wikidata.org/wiki/Q16952335","display_name":"Cover (algebra)","level":2,"score":0.2842999994754791},{"id":"https://openalex.org/C38369872","wikidata":"https://www.wikidata.org/wiki/Q7445009","display_name":"Security analysis","level":2,"score":0.2822999954223633},{"id":"https://openalex.org/C50230483","wikidata":"https://www.wikidata.org/wiki/Q2108226","display_name":"Pre-shared key","level":5,"score":0.2815999984741211},{"id":"https://openalex.org/C22111027","wikidata":"https://www.wikidata.org/wiki/Q1070427","display_name":"Internet security","level":4,"score":0.2797999978065491},{"id":"https://openalex.org/C167169670","wikidata":"https://www.wikidata.org/wiki/Q1824705","display_name":"Lightweight Extensible Authentication Protocol","level":4,"score":0.271699994802475},{"id":"https://openalex.org/C130881749","wikidata":"https://www.wikidata.org/wiki/Q586894","display_name":"Security association","level":5,"score":0.26570001244544983},{"id":"https://openalex.org/C58166","wikidata":"https://www.wikidata.org/wiki/Q224821","display_name":"Fuzzy logic","level":2,"score":0.2612000107765198},{"id":"https://openalex.org/C207828512","wikidata":"https://www.wikidata.org/wiki/Q1060131","display_name":"Challenge-Handshake Authentication Protocol","level":4,"score":0.2599000036716461},{"id":"https://openalex.org/C2776711565","wikidata":"https://www.wikidata.org/wiki/Q7445058","display_name":"Security parameter","level":3,"score":0.25929999351501465},{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.25839999318122864},{"id":"https://openalex.org/C14982408","wikidata":"https://www.wikidata.org/wiki/Q11006334","display_name":"Network Access Control","level":4,"score":0.25589999556541443}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/tifs.2025.3622084","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tifs.2025.3622084","pdf_url":null,"source":{"id":"https://openalex.org/S61310614","display_name":"IEEE Transactions on Information Forensics and Security","issn_l":"1556-6013","issn":["1556-6013","1556-6021"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Information Forensics and Security","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G43724174","display_name":null,"funder_award_id":"Z241100007624008","funder_id":"https://openalex.org/F4320335843","funder_display_name":"Beijing Science and Technology Planning Project"},{"id":"https://openalex.org/G684063317","display_name":null,"funder_award_id":"62202012","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G866882489","display_name":"\u57fa\u4e8e\u871c\u5b57\u7684\u6297\u6cc4\u9732\u8eab\u4efd\u8ba4\u8bc1\u534f\u8bae\u7814\u7a76","funder_award_id":"62072010","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"}],"funders":[{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"},{"id":"https://openalex.org/F4320335843","display_name":"Beijing Science and Technology Planning Project","ror":null}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":43,"referenced_works":["https://openalex.org/W1542059364","https://openalex.org/W1561441787","https://openalex.org/W1892454167","https://openalex.org/W1990556702","https://openalex.org/W2007488200","https://openalex.org/W2048755632","https://openalex.org/W2073342447","https://openalex.org/W2097407854","https://openalex.org/W2099000090","https://openalex.org/W2106150202","https://openalex.org/W2120551550","https://openalex.org/W2124926080","https://openalex.org/W2135359429","https://openalex.org/W2138474025","https://openalex.org/W2141420453","https://openalex.org/W2145415641","https://openalex.org/W2146973388","https://openalex.org/W2181993045","https://openalex.org/W2351133878","https://openalex.org/W2570008916","https://openalex.org/W2766472919","https://openalex.org/W2789461976","https://openalex.org/W2795336163","https://openalex.org/W2883088980","https://openalex.org/W2931153881","https://openalex.org/W2932503745","https://openalex.org/W2970097841","https://openalex.org/W2982664727","https://openalex.org/W3003637591","https://openalex.org/W3096322229","https://openalex.org/W3107080613","https://openalex.org/W3117176175","https://openalex.org/W3161894933","https://openalex.org/W4312426553","https://openalex.org/W4384948616","https://openalex.org/W4385654388","https://openalex.org/W4392405631","https://openalex.org/W4393241352","https://openalex.org/W4393405557","https://openalex.org/W4402263804","https://openalex.org/W4408352550","https://openalex.org/W4408354830","https://openalex.org/W4415293391"],"related_works":[],"abstract_inverted_index":{"Multi-factor":[0],"authentication":[1,18,149],"(MFA)":[2],"is":[3,150,159],"widely":[4],"used":[5],"to":[6,27,55,98,107,126,164,284],"secure":[7,91],"high-value":[8],"digital":[9],"assets":[10],"in":[11,290],"web":[12],"applications.":[13],"Traditional":[14],"<italic":[15,29,59,67,118,173,199,210,241,247,254,276,286,291],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[16,20,30,46,60,68,119,174,200,211,213,221,223,227,229,242,244,248,250,255,257,277,287,292],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">t</i>-factor":[17],"(<italic":[19,45],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">t</i>-FA)":[21],"enhances":[22],"security":[23,80,109,133,182,188],"by":[24,52,269],"requiring":[25,270],"users":[26,54,125],"present":[28],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">t</i>":[31,61,293],"factors,":[32],"which":[33],"often":[34],"becomes":[35],"inconvenient":[36],"as":[37,75],"the":[38,78,132,181,187,196,285],"number":[39],"of":[40,66,82,135,157,183,189,194,240,294],"required":[41],"factors":[42,62,74,158],"increases.":[43],"Threshold":[44],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">t,":[47],"n</i>)-MFA":[48],"(T-MFA)":[49],"improves":[50],"usability":[51,111],"allowing":[53,124],"authenticate":[56],"with":[57],"any":[58],"from":[63],"a":[64,121,154,236,275],"set":[65],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">n</i>.":[69],"However,":[70],"T-MFA":[71,96,162,268],"treats":[72],"all":[73],"equal,":[76],"ignoring":[77],"varying":[79],"strengths":[81],"different":[83],"factors.":[84],"For":[85,260],"instance,":[86],"passwords":[87],"are":[88],"generally":[89],"less":[90],"than":[92],"smart":[93],"cards,":[94],"yet":[95],"fails":[97],"account":[99],"for":[100,143,235],"these":[101],"differences.":[102],"This":[103],"restricts":[104],"its":[105],"ability":[106],"balance":[108],"and":[110,185,205,232,253,279],"effectively.":[112],"To":[113],"overcome":[114],"this,":[115],"we":[116],"propose":[117],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">AS-MFA</i>,":[120],"new":[122],"primitive":[123],"configure":[127],"factor":[128,170,237],"combinations":[129],"based":[130],"on":[131],"strength":[134],"each":[136],"factor.":[137],"Our":[138],"scheme":[139],"employs":[140],"secret":[141],"sharing":[142],"general":[144],"access":[145],"structures,":[146],"ensuring":[147],"that":[148],"granted":[151],"only":[152],"when":[153],"valid":[155],"combination":[156,238],"presented.":[160],"Unlike":[161],"limited":[163],"threshold":[165,261],"configurations,":[166,262],"AS-MFA":[167,184,263],"supports":[168],"arbitrary":[169],"combinations,":[171],"offering":[172,274],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">greater":[175],"user":[176],"autonomy</i>.":[177],"We":[178],"formally":[179],"define":[180],"prove":[186],"our":[190],"design.":[191],"In":[192],"terms":[193],"performance,":[195],"protocol":[197],"requires":[198],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">only":[201],"two</i>":[202],"communication":[203],"rounds":[204],"achieves":[206],"computational":[207],"efficiency,":[208],"involving":[209],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">t</i><sub":[212,222,228,243,249,256],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">2</sub>":[214,230,251],"fuzzy":[215],"extractor":[216],"operations,":[217,273],"2":[218,233],"+":[219,225],"3<italic":[220,226],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">1</sub>":[224,245],"exponentiations,":[231],"multi-exponentiations":[234],"consisting":[239],"passwords,":[246],"biometrics,":[252],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">3</sub>":[258],"devices.":[259],"outperforms":[264],"Li":[265],"et":[266],"al.\u2019s":[267],"fewer":[271],"exponentiation":[272],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">constant</i>":[278],"lower":[280],"computation":[281],"cost":[282,289],"compared":[283],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">linear</i>":[288],"T-MFA.":[295]},"counts_by_year":[],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-16T00:00:00"}
