{"id":"https://openalex.org/W3087771973","doi":"https://doi.org/10.3390/fi12100160","title":"Two-Factor Authentication Scheme for Mobile Money: A Review of Threat Models and Countermeasures","display_name":"Two-Factor Authentication Scheme for Mobile Money: A Review of Threat Models and Countermeasures","publication_year":2020,"publication_date":"2020-09-24","ids":{"openalex":"https://openalex.org/W3087771973","doi":"https://doi.org/10.3390/fi12100160","mag":"3087771973"},"language":"en","primary_location":{"id":"doi:10.3390/fi12100160","is_oa":true,"landing_page_url":"https://doi.org/10.3390/fi12100160","pdf_url":"https://www.mdpi.com/1999-5903/12/10/160/pdf","source":{"id":"https://openalex.org/S34838331","display_name":"Future Internet","issn_l":"1999-5903","issn":["1999-5903"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Future Internet","raw_type":"journal-article"},"type":"review","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://www.mdpi.com/1999-5903/12/10/160/pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5004070599","display_name":"Guma Ali","orcid":"https://orcid.org/0000-0003-3234-6420"},"institutions":[{"id":"https://openalex.org/I97231232","display_name":"Nelson Mandela African Institution of Science and Technology","ror":"https://ror.org/041vsn055","country_code":"TZ","type":"education","lineage":["https://openalex.org/I97231232"]}],"countries":["TZ"],"is_corresponding":true,"raw_author_name":"Guma Ali","raw_affiliation_strings":["Department of Information Technology Development and Management (ITDM), Nelson Mandela African Institution of Science and Technology (NM-AIST), Arusha 447, Tanzania"],"affiliations":[{"raw_affiliation_string":"Department of Information Technology Development and Management (ITDM), Nelson Mandela African Institution of Science and Technology (NM-AIST), Arusha 447, Tanzania","institution_ids":["https://openalex.org/I97231232"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5024150835","display_name":"Mussa Ally Dida","orcid":"https://orcid.org/0000-0002-7143-8953"},"institutions":[{"id":"https://openalex.org/I97231232","display_name":"Nelson Mandela African Institution of Science and Technology","ror":"https://ror.org/041vsn055","country_code":"TZ","type":"education","lineage":["https://openalex.org/I97231232"]}],"countries":["TZ"],"is_corresponding":false,"raw_author_name":"Mussa Ally Dida","raw_affiliation_strings":["Department of Information Technology Development and Management (ITDM), Nelson Mandela African Institution of Science and Technology (NM-AIST), Arusha 447, Tanzania"],"affiliations":[{"raw_affiliation_string":"Department of Information Technology Development and Management (ITDM), Nelson Mandela African Institution of Science and Technology (NM-AIST), Arusha 447, Tanzania","institution_ids":["https://openalex.org/I97231232"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5011623059","display_name":"Anael Sam","orcid":"https://orcid.org/0000-0002-0865-9737"},"institutions":[{"id":"https://openalex.org/I97231232","display_name":"Nelson Mandela African Institution of Science and Technology","ror":"https://ror.org/041vsn055","country_code":"TZ","type":"education","lineage":["https://openalex.org/I97231232"]}],"countries":["TZ"],"is_corresponding":false,"raw_author_name":"Anael Elikana Sam","raw_affiliation_strings":["Department of Communication Science and Engineering (CoSE), Nelson Mandela African Institution of Science and Technology (NM-AIST), Arusha 447, Tanzania"],"affiliations":[{"raw_affiliation_string":"Department of Communication Science and Engineering (CoSE), Nelson Mandela African Institution of Science and Technology (NM-AIST), Arusha 447, Tanzania","institution_ids":["https://openalex.org/I97231232"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5004070599"],"corresponding_institution_ids":["https://openalex.org/I97231232"],"apc_list":{"value":1400,"currency":"CHF","value_usd":1515},"apc_paid":{"value":1400,"currency":"CHF","value_usd":1515},"fwci":10.2924,"has_fulltext":true,"cited_by_count":63,"citation_normalized_percentile":{"value":0.98201813,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":99,"max":100},"biblio":{"volume":"12","issue":"10","first_page":"160","last_page":"160"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.996399998664856,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.996399998664856,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10270","display_name":"Blockchain Technology Applications and Security","score":0.995199978351593,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9932000041007996,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8476259112358093},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6925274729728699},{"id":"https://openalex.org/keywords/authentication","display_name":"Authentication (law)","score":0.5913757085800171},{"id":"https://openalex.org/keywords/hash-function","display_name":"Hash function","score":0.5801492929458618},{"id":"https://openalex.org/keywords/mobile-payment","display_name":"Mobile payment","score":0.5520265698432922},{"id":"https://openalex.org/keywords/mobile-banking","display_name":"Mobile banking","score":0.5383971333503723},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.5145310759544373},{"id":"https://openalex.org/keywords/mobile-device","display_name":"Mobile device","score":0.45622923970222473},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.41148242354393005},{"id":"https://openalex.org/keywords/internet-privacy","display_name":"Internet privacy","score":0.342734158039093},{"id":"https://openalex.org/keywords/mobile-computing","display_name":"Mobile computing","score":0.27397048473358154},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.2658545970916748},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.1510143280029297}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8476259112358093},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6925274729728699},{"id":"https://openalex.org/C148417208","wikidata":"https://www.wikidata.org/wiki/Q4825882","display_name":"Authentication (law)","level":2,"score":0.5913757085800171},{"id":"https://openalex.org/C99138194","wikidata":"https://www.wikidata.org/wiki/Q183427","display_name":"Hash function","level":2,"score":0.5801492929458618},{"id":"https://openalex.org/C160949748","wikidata":"https://www.wikidata.org/wiki/Q1365703","display_name":"Mobile payment","level":3,"score":0.5520265698432922},{"id":"https://openalex.org/C2775930393","wikidata":"https://www.wikidata.org/wiki/Q1941439","display_name":"Mobile banking","level":2,"score":0.5383971333503723},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.5145310759544373},{"id":"https://openalex.org/C186967261","wikidata":"https://www.wikidata.org/wiki/Q5082128","display_name":"Mobile device","level":2,"score":0.45622923970222473},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.41148242354393005},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.342734158039093},{"id":"https://openalex.org/C144543869","wikidata":"https://www.wikidata.org/wiki/Q2738570","display_name":"Mobile computing","level":2,"score":0.27397048473358154},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.2658545970916748},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.1510143280029297}],"mesh":[],"locations_count":4,"locations":[{"id":"doi:10.3390/fi12100160","is_oa":true,"landing_page_url":"https://doi.org/10.3390/fi12100160","pdf_url":"https://www.mdpi.com/1999-5903/12/10/160/pdf","source":{"id":"https://openalex.org/S34838331","display_name":"Future Internet","issn_l":"1999-5903","issn":["1999-5903"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Future Internet","raw_type":"journal-article"},{"id":"pmh:oai:RePEc:gam:jftint:v:12:y:2020:i:10:p:160-:d:418641","is_oa":false,"landing_page_url":"https://www.mdpi.com/1999-5903/12/10/160/","pdf_url":null,"source":{"id":"https://openalex.org/S4306401271","display_name":"RePEc: Research Papers in Economics","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I77793887","host_organization_name":"Federal Reserve Bank of St. Louis","host_organization_lineage":["https://openalex.org/I77793887"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},{"id":"pmh:oai:doaj.org/article:2cded2f7af194deca4a571e82aa6b8e9","is_oa":true,"landing_page_url":"https://doaj.org/article/2cded2f7af194deca4a571e82aa6b8e9","pdf_url":null,"source":{"id":"https://openalex.org/S112646816","display_name":"SHILAP Revista de lepidopterolog\u00eda","issn_l":"0300-5267","issn":["0300-5267","2340-4078"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Future Internet, Vol 12, Iss 10, p 160 (2020)","raw_type":"article"},{"id":"pmh:oai:mdpi.com:/1999-5903/12/10/160/","is_oa":true,"landing_page_url":"https://dx.doi.org/10.3390/fi12100160","pdf_url":null,"source":{"id":"https://openalex.org/S4306400947","display_name":"MDPI (MDPI AG)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I4210097602","host_organization_name":"Multidisciplinary Digital Publishing Institute (Switzerland)","host_organization_lineage":["https://openalex.org/I4210097602"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Future Internet; Volume 12; Issue 10; Pages: 160","raw_type":"Text"}],"best_oa_location":{"id":"doi:10.3390/fi12100160","is_oa":true,"landing_page_url":"https://doi.org/10.3390/fi12100160","pdf_url":"https://www.mdpi.com/1999-5903/12/10/160/pdf","source":{"id":"https://openalex.org/S34838331","display_name":"Future Internet","issn_l":"1999-5903","issn":["1999-5903"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Future Internet","raw_type":"journal-article"},"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.7200000286102295}],"awards":[],"funders":[],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W3087771973.pdf","grobid_xml":"https://content.openalex.org/works/W3087771973.grobid-xml"},"referenced_works_count":106,"referenced_works":["https://openalex.org/W417364168","https://openalex.org/W577135136","https://openalex.org/W961347964","https://openalex.org/W1550099438","https://openalex.org/W1619529218","https://openalex.org/W1977410996","https://openalex.org/W2004209351","https://openalex.org/W2008620889","https://openalex.org/W2013746326","https://openalex.org/W2030464748","https://openalex.org/W2033247376","https://openalex.org/W2038019800","https://openalex.org/W2082348123","https://openalex.org/W2082697717","https://openalex.org/W2089470985","https://openalex.org/W2101206686","https://openalex.org/W2118331095","https://openalex.org/W2133783145","https://openalex.org/W2133968993","https://openalex.org/W2151295171","https://openalex.org/W2156291338","https://openalex.org/W2180145598","https://openalex.org/W2184420365","https://openalex.org/W2186053739","https://openalex.org/W2188647449","https://openalex.org/W2226744499","https://openalex.org/W2262024201","https://openalex.org/W2293277580","https://openalex.org/W2334852362","https://openalex.org/W2465113724","https://openalex.org/W2501749582","https://openalex.org/W2530186732","https://openalex.org/W2551918591","https://openalex.org/W2557798848","https://openalex.org/W2558574039","https://openalex.org/W2576052527","https://openalex.org/W2588340177","https://openalex.org/W2606751384","https://openalex.org/W2610546334","https://openalex.org/W2611445911","https://openalex.org/W2612410409","https://openalex.org/W2686168333","https://openalex.org/W2727780891","https://openalex.org/W2734704977","https://openalex.org/W2735668488","https://openalex.org/W2736070566","https://openalex.org/W2742827529","https://openalex.org/W2767002488","https://openalex.org/W2774411272","https://openalex.org/W2778229479","https://openalex.org/W2783001468","https://openalex.org/W2784017372","https://openalex.org/W2789461976","https://openalex.org/W2801543595","https://openalex.org/W2802139102","https://openalex.org/W2802665741","https://openalex.org/W2802964747","https://openalex.org/W2803062017","https://openalex.org/W2809093729","https://openalex.org/W2810142915","https://openalex.org/W2885379133","https://openalex.org/W2885790134","https://openalex.org/W2900104402","https://openalex.org/W2900752260","https://openalex.org/W2900860599","https://openalex.org/W2901362965","https://openalex.org/W2912208904","https://openalex.org/W2927212303","https://openalex.org/W2929988668","https://openalex.org/W2933289738","https://openalex.org/W2942047243","https://openalex.org/W2943304642","https://openalex.org/W2945668799","https://openalex.org/W2968351599","https://openalex.org/W2972475147","https://openalex.org/W2982767117","https://openalex.org/W2998446405","https://openalex.org/W2999793031","https://openalex.org/W3001735470","https://openalex.org/W3010674463","https://openalex.org/W3015458103","https://openalex.org/W3017134527","https://openalex.org/W3020113666","https://openalex.org/W3033928645","https://openalex.org/W3107594118","https://openalex.org/W4230908098","https://openalex.org/W4246774231","https://openalex.org/W4252900608","https://openalex.org/W4255613605","https://openalex.org/W4285719527","https://openalex.org/W6614548907","https://openalex.org/W6625214902","https://openalex.org/W6632813158","https://openalex.org/W6670582050","https://openalex.org/W6672745865","https://openalex.org/W6683028399","https://openalex.org/W6686860783","https://openalex.org/W6697125615","https://openalex.org/W6703279017","https://openalex.org/W6728207598","https://openalex.org/W6745719316","https://openalex.org/W6753942529","https://openalex.org/W6761306301","https://openalex.org/W6761527145","https://openalex.org/W6776581826","https://openalex.org/W6786599395"],"related_works":["https://openalex.org/W44983088","https://openalex.org/W2789437230","https://openalex.org/W3048300727","https://openalex.org/W4249403509","https://openalex.org/W3016690046","https://openalex.org/W3034529322","https://openalex.org/W2511300489","https://openalex.org/W1518742485","https://openalex.org/W2896059243","https://openalex.org/W2113597336"],"abstract_inverted_index":{"The":[0,199],"proliferation":[1],"of":[2,203],"digital":[3],"financial":[4],"innovations":[5],"like":[6],"mobile":[7,15,35,56,129,133,140,146,157,176,234,272,289],"money":[8,36,130,134,147,177,235,273],"has":[9,20,236],"led":[10],"to":[11,38,46,61,65,117,241,259,265,282],"the":[12,23,28,39,48,52,63,67,77,109,118,136,145,153,168,172,229],"rise":[13],"in":[14,51,152,171],"subscriptions":[16],"and":[17,80,96,98,114,159,195,213,216,221,253,278],"transactions.":[18],"It":[19,58],"also":[21,59],"increased":[22],"security":[24,237],"challenges":[25],"associated":[26],"with":[27],"current":[29,230,285],"two-factor":[30],"authentication":[31,137],"(2FA)":[32],"scheme":[33,54,138,155,174,232,287],"for":[34,55,139,156,175,233,288],"due":[37],"high":[40],"demand.":[41],"This":[42,224,267],"review":[43,225],"paper":[44],"aims":[45],"determine":[47],"threat":[49,68,150,169],"models":[50,151,170],"2FA":[53,154,173,231,286],"money.":[57,290],"intends":[60],"identify":[62],"countermeasures":[64,200],"overcome":[66],"models.":[69],"A":[70],"comprehensive":[71],"literature":[72,162],"search":[73],"was":[74,165],"conducted":[75],"from":[76],"Google":[78],"Scholar":[79],"other":[81],"leading":[82],"scientific":[83],"databases":[84],"such":[85],"as":[86],"IEEE":[87],"Xplore,":[88],"MDPI,":[89],"Emerald":[90],"Insight,":[91],"Hindawi,":[92],"ACM,":[93],"Elsevier,":[94],"Springer,":[95],"Specific":[97],"International":[99],"Journals,":[100],"where":[101],"97":[102],"papers":[103,113],"were":[104,120,178],"reviewed":[105],"that":[106,167,228,239,280],"focused":[107],"on":[108,127,144],"topic.":[110],"Descriptive":[111],"research":[112],"studies":[115],"related":[116],"theme":[119],"selected.":[121],"Three":[122],"reviewers":[123],"extracted":[124],"information":[125],"independently":[126],"authentication,":[128,188],"system":[131,148],"architecture,":[132],"access,":[135],"money,":[141,158],"various":[142],"attacks":[143,183,186,189,192,196],"(MMS),":[149],"countermeasures.":[160],"Through":[161],"analysis,":[163],"it":[164,245],"found":[166],"categorised":[179],"into":[180],"five,":[181],"namely,":[182],"against":[184,187,190,193,197],"privacy,":[185],"confidentiality,":[191],"integrity,":[194],"availability.":[198],"include":[201],"use":[202],"cryptographic":[204],"functions":[205],"(e.g.,":[206,219],"asymmetric":[207],"encryption":[208,211],"function,":[209,212],"symmetric":[210],"hash":[214],"function)":[215],"personal":[217,249],"identification":[218,250],"number-based":[220],"biometric-based":[222],"countermeasures).":[223],"study":[226],"reveals":[227],"gaps":[238],"need":[240],"be":[242],"addressed":[243],"since":[244],"only":[246],"uses":[247],"a":[248,254],"number":[251],"(PIN)":[252],"subscriber":[255],"identity":[256],"module":[257],"(SIM)":[258],"authenticate":[260],"users,":[261],"which":[262],"are":[263],"susceptible":[264],"attacks.":[266],"work,":[268],"therefore,":[269],"will":[270],"help":[271],"service":[274],"providers":[275],"(MMSPs),":[276],"decision-makers,":[277],"governments":[279],"wish":[281],"improve":[283],"their":[284]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":16},{"year":2024,"cited_by_count":8},{"year":2023,"cited_by_count":13},{"year":2022,"cited_by_count":14},{"year":2021,"cited_by_count":10}],"updated_date":"2026-04-05T17:49:38.594831","created_date":"2025-10-10T00:00:00"}