{"id":"https://openalex.org/W2945441410","doi":"https://doi.org/10.1145/3317549.3323404","title":"2FA-PP","display_name":"2FA-PP","publication_year":2019,"publication_date":"2019-05-15","ids":{"openalex":"https://openalex.org/W2945441410","doi":"https://doi.org/10.1145/3317549.3323404","mag":"2945441410"},"language":"en","primary_location":{"id":"doi:10.1145/3317549.3323404","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3317549.3323404","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 12th Conference on Security and Privacy in Wireless and Mobile Networks","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5003313317","display_name":"Enis Ulqinaku","orcid":null},"institutions":[{"id":"https://openalex.org/I35440088","display_name":"ETH Zurich","ror":"https://ror.org/05a28rw58","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I35440088"]}],"countries":["CH"],"is_corresponding":true,"raw_author_name":"Enis Ulqinaku","raw_affiliation_strings":["ETH Zurich, Switzerland"],"affiliations":[{"raw_affiliation_string":"ETH Zurich, Switzerland","institution_ids":["https://openalex.org/I35440088"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5031443144","display_name":"Daniele Lain","orcid":"https://orcid.org/0000-0001-6101-7306"},"institutions":[{"id":"https://openalex.org/I35440088","display_name":"ETH Zurich","ror":"https://ror.org/05a28rw58","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I35440088"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Daniele Lain","raw_affiliation_strings":["ETH Zurich, Switzerland"],"affiliations":[{"raw_affiliation_string":"ETH Zurich, Switzerland","institution_ids":["https://openalex.org/I35440088"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5077290467","display_name":"Sr\u0111jan \u010capkun","orcid":"https://orcid.org/0000-0001-5727-3673"},"institutions":[{"id":"https://openalex.org/I35440088","display_name":"ETH Zurich","ror":"https://ror.org/05a28rw58","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I35440088"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Srdjan Capkun","raw_affiliation_strings":["ETH Zurich, Switzerland"],"affiliations":[{"raw_affiliation_string":"ETH Zurich, Switzerland","institution_ids":["https://openalex.org/I35440088"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5003313317"],"corresponding_institution_ids":["https://openalex.org/I35440088"],"apc_list":null,"apc_paid":null,"fwci":2.7132,"has_fulltext":false,"cited_by_count":15,"citation_normalized_percentile":{"value":0.91892548,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":91,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"60","last_page":"70"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9955000281333923,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7944189310073853},{"id":"https://openalex.org/keywords/multi-factor-authentication","display_name":"Multi-factor authentication","score":0.6690660715103149},{"id":"https://openalex.org/keywords/authentication","display_name":"Authentication (law)","score":0.5625588297843933},{"id":"https://openalex.org/keywords/phishing","display_name":"Phishing","score":0.5518678426742554},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4094783663749695},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.3336384892463684},{"id":"https://openalex.org/keywords/authentication-protocol","display_name":"Authentication protocol","score":0.20393642783164978},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.14347857236862183},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.14335346221923828}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7944189310073853},{"id":"https://openalex.org/C194699767","wikidata":"https://www.wikidata.org/wiki/Q7878662","display_name":"Multi-factor authentication","level":4,"score":0.6690660715103149},{"id":"https://openalex.org/C148417208","wikidata":"https://www.wikidata.org/wiki/Q4825882","display_name":"Authentication (law)","level":2,"score":0.5625588297843933},{"id":"https://openalex.org/C83860907","wikidata":"https://www.wikidata.org/wiki/Q135005","display_name":"Phishing","level":3,"score":0.5518678426742554},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4094783663749695},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.3336384892463684},{"id":"https://openalex.org/C21564112","wikidata":"https://www.wikidata.org/wiki/Q4825885","display_name":"Authentication protocol","level":3,"score":0.20393642783164978},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.14347857236862183},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.14335346221923828}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3317549.3323404","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3317549.3323404","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 12th Conference on Security and Privacy in Wireless and Mobile Networks","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.4300000071525574}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":27,"referenced_works":["https://openalex.org/W1463518955","https://openalex.org/W1498527206","https://openalex.org/W1534968492","https://openalex.org/W1955134710","https://openalex.org/W1989085188","https://openalex.org/W2027116109","https://openalex.org/W2029591949","https://openalex.org/W2030112111","https://openalex.org/W2037202491","https://openalex.org/W2052176706","https://openalex.org/W2073342447","https://openalex.org/W2084641398","https://openalex.org/W2099889974","https://openalex.org/W2100783932","https://openalex.org/W2113266120","https://openalex.org/W2125657191","https://openalex.org/W2131906261","https://openalex.org/W2132903355","https://openalex.org/W2149929743","https://openalex.org/W2158705880","https://openalex.org/W2253893204","https://openalex.org/W2503510896","https://openalex.org/W2560252021","https://openalex.org/W2659233977","https://openalex.org/W2752178278","https://openalex.org/W2765227388","https://openalex.org/W2896384017"],"related_works":["https://openalex.org/W2784017372","https://openalex.org/W2912135041","https://openalex.org/W2363363251","https://openalex.org/W4309172146","https://openalex.org/W4238865314","https://openalex.org/W4291701200","https://openalex.org/W2784315464","https://openalex.org/W3010813109","https://openalex.org/W192327621","https://openalex.org/W4324137616"],"abstract_inverted_index":{"Two":[0],"factor":[1,38,55,93],"authentication":[2,8,54],"(2FA)":[3],"schemes":[4,23],"provide":[5],"strong":[6],"user":[7,88,101],"guarantees":[9],"and":[10,70,76,124],"increase":[11],"the":[12,78,83,87,100,106],"security":[13],"of":[14,18],"a":[15,46],"wide":[16],"range":[17],"web":[19],"services.":[20],"However,":[21],"2FA":[22,115],"still":[24],"largely":[25],"remain":[26],"vulnerable":[27],"to":[28,81,85,99],"phishing":[29,47,57],"attacks":[30],"in":[31],"which":[32,86],"attackers":[33],"also":[34],"phish":[35],"users'":[36,52],"second":[37,92],"(e.g.,":[39,73],"their":[40],"OTP":[41],"tokens).":[42],"We":[43],"propose":[44],"2FA-PP,":[45],"detection":[48],"scheme":[49],"that":[50,64],"protects":[51],"2nd":[53],"from":[56],"attacks.":[58],"2FA-PP":[59,109],"uses":[60],"novel":[61],"browser":[62],"APIs":[63],"support":[65],"direct":[66],"communication":[67],"between":[68],"browsers":[69],"external":[71],"devices":[72],"mobile":[74],"phones)":[75],"enables":[77],"user's":[79],"phone":[80],"check":[82],"domain":[84],"is":[89,94,104],"connected.":[90],"The":[91],"then":[95],"only":[96],"made":[97],"available":[98],"if":[102],"he":[103],"accessing":[105],"correct":[107],"domain.":[108],"can":[110],"be":[111],"combined":[112],"with":[113],"different":[114],"schemes,":[116],"both":[117],"interactive,":[118],"based":[119,126],"on":[120,127],"OTP,":[121],"QR":[122],"codes":[123],"non-interactive,":[125],"device":[128],"pairing":[129],"or":[130],"proximity.":[131]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":3},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":2},{"year":2021,"cited_by_count":4},{"year":2020,"cited_by_count":2}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2019-05-29T00:00:00"}