A Secure and Efficient Multi-Factor Authentication Algorithm for Mobile Money Applications

dc.contributor.authorGuma, Ali
dc.contributor.authorDida, Mussa Ally
dc.contributor.authorElikana Sam, Anael
dc.date.accessioned2023-07-14T16:08:07Z
dc.date.available2023-07-14T16:08:07Z
dc.date.issued2021
dc.description.abstractWith the expansion of smartphone and financial technologies (FinTech), mobile money emerged to improve financial inclusion in many developing nations. The majority of the mobile money schemes used in these nations implement two-factor authentication (2FA) as the only means of verifying mobile money users. These 2FA schemes are vulnerable to numerous security attacks because they only use a personal identification number (PIN) and subscriber identity module (SIM). This study aims to develop a secure and efficient multi-factor authentication algorithm for mobile money applications. It uses a novel approach combining PIN, a one-time password (OTP), and a biometric fingerprint to enforce extra security during mobile money authentication. It also uses a biometric fingerprint and quick response (QR) code to confirm mobile money withdrawal. The security of the PIN and OTP is enforced by using secure hashing algorithm-256 (SHA-256), a biometric fingerprint by Fast IDentity Online (FIDO) that uses a standard public key cryptography technique (RSA), and Fernet encryption to secure a QR code and the records in the databases. The evolutionary prototyping model was adopted when developing the native mobile money application prototypes to prove that the algorithm is feasible and provides a higher degree of security. The developed applications were tested, and a detailed security analysis was conducted. The results show that the proposed algorithm is secure, efficient, and highly effective against the various threat models. It also offers secure and efficient authentication and ensures data confidentiality, integrity, non-repudiation, user anonymity, and privacy. The performance analysis indicates that it achieves better overall performance compared with the existing mobile money systems.en_US
dc.identifier.citationAli, G.; Dida, M.A.; Elikana Sam, A. A Secure and Efficient Multi-Factor Authentication Algorithm for Mobile Money Applications. Future Internet 2021, 13, 299. https://doi.org/10.3390/ fi13120299en_US
dc.identifier.urihttps://doi.org/10.3390/ fi13120299
dc.identifier.urihttps://nru.uncst.go.ug/handle/123456789/9065
dc.language.isoenen_US
dc.publisherFuture Interneten_US
dc.subjectMobile money systemsen_US
dc.subject2FAen_US
dc.subjectMulti-factor authenticationen_US
dc.subjectPINen_US
dc.subjectOTPen_US
dc.subjectBiometric fingerprinten_US
dc.subjectTwilio SMSen_US
dc.subjectFernet encryptionen_US
dc.subjectMobile moneyen_US
dc.titleA Secure and Efficient Multi-Factor Authentication Algorithm for Mobile Money Applicationsen_US
dc.typeArticleen_US
Files
Original bundle
Now showing 1 - 1 of 1
Loading...
Thumbnail Image
Name:
A Secure and Efficient Multi-Factor Authentication Algorithm.pdf
Size:
8.91 MB
Format:
Adobe Portable Document Format
Description:
Article
License bundle
Now showing 1 - 1 of 1
No Thumbnail Available
Name:
license.txt
Size:
1.71 KB
Format:
Item-specific license agreed upon to submission
Description: