{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,9,29]],"date-time":"2025-09-29T08:24:50Z","timestamp":1759134290547,"version":"3.41.0"},"publisher-location":"Cham","reference-count":23,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319184661"},{"type":"electronic","value":"9783319184678"}],"license":[{"start":{"date-parts":[[2015,1,1]],"date-time":"2015-01-01T00:00:00Z","timestamp":1420070400000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2015]]},"DOI":"10.1007\/978-3-319-18467-8_11","type":"book-chapter","created":{"date-parts":[[2015,5,8]],"date-time":"2015-05-08T12:12:03Z","timestamp":1431087123000},"page":"159-173","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":3,"title":["Enhancing Passwords Security Using Deceptive Covert Communication"],"prefix":"10.1007","author":[{"given":"Mohammed H.","family":"Almeshekah","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mikhail J.","family":"Atallah","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Eugene H.","family":"Spafford","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2015,5,9]]},"reference":[{"key":"11_CR1","doi-asserted-by":"crossref","unstructured":"Adham, M., Azodi, A., Desmedt, Y., Karaolis, I.: How to attack two-factor authentication internet banking. In: Financial Cryptography (2013)","DOI":"10.1007\/978-3-642-39884-1_27"},{"key":"11_CR2","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"189","DOI":"10.1007\/978-3-642-41717-7_22","volume-title":"Security Protocols XXI","author":"MH Almeshekah","year":"2013","unstructured":"Almeshekah, M.H., Atallah, M.J., Spafford, E.H.: Back channels can be useful! \u2013 layering authentication channels to provide covert communication. In: Christianson, B., Malcolm, J., Stajano, F., Anderson, J., Bonneau, J. (eds.) Security Protocols 2013. LNCS, vol. 8263, pp. 189\u2013195. Springer, Heidelberg (2013)"},{"key":"11_CR3","doi-asserted-by":"crossref","unstructured":"Almeshekah, M.H., Spafford, E.H.: Planning and integrating deception into computer security defenses. In: New Security Paradigms Workshop (NSPW 2014), Victoria, BC, Canada (2014)","DOI":"10.1145\/2683467.2683482"},{"key":"11_CR4","unstructured":"American Banking Association (ABA). Popularity of Online Banking Explodes, September 2011"},{"key":"11_CR5","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"160","DOI":"10.1007\/3-540-47870-1_10","volume-title":"Security and Privacy in Digital Rights Management","author":"H Chang","year":"2002","unstructured":"Chang, H., Atallah, M.J.: Protecting software code by guards. In: Sander, T. (ed.) DRM 2001. LNCS, vol. 2320, p. 160. Springer, Heidelberg (2002)"},{"key":"11_CR6","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"114","DOI":"10.1007\/3-540-45866-2_10","volume-title":"Pervasive Computing","author":"D Clarke","year":"2002","unstructured":"Clarke, D., Gassend, B., Kotwal, T., Burnside, M., van Dijk, M., Devadas, S., Rivest, R.L.: The untrusted computer problem and camera-based authentication. In: Mattern, F., Naghshineh, M. (eds.) PERVASIVE 2002. LNCS, vol. 2414, pp. 114\u2013124. Springer, Heidelberg (2002)"},{"key":"11_CR7","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"184","DOI":"10.1007\/978-3-642-03549-4_11","volume-title":"Financial Cryptography and Data Security","author":"S Drimer","year":"2009","unstructured":"Drimer, S., Murdoch, S.J., Anderson, R.: Optimised to fail: card readers for online banking. In: Dingledine, R., Golle, P. (eds.) FC 2009. LNCS, vol. 5628, pp. 184\u2013200. Springer, Heidelberg (2009)"},{"key":"11_CR8","unstructured":"Drokov, I., Punskaya, E., Tahar, E.: System and Method For Dynamic Multifactor Authentication (2006)"},{"issue":"2","key":"11_CR9","doi-asserted-by":"publisher","first-page":"24","DOI":"10.1109\/MS.2011.34","volume":"28","author":"P Falcarin","year":"2011","unstructured":"Falcarin, P., Collberg, C., Atallah, M., Jakubowski, M.: Software Protection. IEEE Software 28(2), 24\u201327 (2011)","journal-title":"IEEE Software"},{"key":"11_CR10","unstructured":"Fazio, N., Nicolosi, A.: Cryptographic accumulators: Definitions, constructions and applications"},{"key":"11_CR11","unstructured":"Harini, N., Padmanabhan, T.R.: 2CAuth: A New Two Factor Authentication Scheme Using QR-Code. International Journal of Engineering and Technology (2013)"},{"issue":"10","key":"11_CR12","doi-asserted-by":"publisher","first-page":"613","DOI":"10.1145\/362375.362389","volume":"16","author":"BW Lampson","year":"1973","unstructured":"Lampson, B.W.: A note on the confinement problem. Communications of the ACM 16(10), 613\u2013615 (1973)","journal-title":"Communications of the ACM"},{"key":"11_CR13","series-title":"Lecture Notes in Electrical Engineering","doi-asserted-by":"publisher","first-page":"241","DOI":"10.1007\/978-94-007-5083-8_30","volume-title":"Information Technology Convergence, Secure and Trust Computing, and Data Management","author":"Y Lee","year":"2012","unstructured":"Lee, Y., Kim, J., Jeon, W., Won, D.: Design of a simple user authentication scheme using QR-code for mobile device. In: Park, J.H.J., Kim, J., Zou, D., Lee, Y.S. (eds.) Information Technology Convergence, Secure and Trust Computing, and Data Management. LNCS, vol. 180, pp. 241\u2013247. Springer, Dordrecht (2012)"},{"key":"11_CR14","doi-asserted-by":"crossref","unstructured":"Lee, Y.S., Kim, N.H., Lim, H., Jo, H., Lee, H.J.: Online banking authentication system using mobile-OTP with QR-code. In: 2010 5th International Conference on Computer Sciences and Convergence Information Technology (ICCIT), pp. 644\u2013648. IEEE (2010)","DOI":"10.1109\/ICCIT.2010.5711134"},{"key":"11_CR15","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"235","DOI":"10.1007\/978-3-642-27576-0_19","volume-title":"Financial Cryptography and Data Security","author":"S Li","year":"2012","unstructured":"Li, S., Sadeghi, A.-R., Heisrath, S., Schmitz, R., Ahmad, J.J.: hPIN\/hTAN: a lightweight and low-cost e-banking solution against untrusted computers. In: Danezis, G. (ed.) FC 2011. LNCS, vol. 7035, pp. 235\u2013249. Springer, Heidelberg (2012)"},{"issue":"8","key":"11_CR16","doi-asserted-by":"publisher","first-page":"937","DOI":"10.4304\/jnw.5.8.937-941","volume":"5","author":"K-C Liao","year":"2010","unstructured":"Liao, K.-C., Lee, W.-H.: A novel user authentication scheme based on QR-code. Journal of Networks 5(8), 937\u2013941 (2010)","journal-title":"Journal of Networks"},{"key":"11_CR17","unstructured":"Mimoso, M.: Two-Factor Authentication No Cure-All for Twitter Security Woes"},{"key":"11_CR18","doi-asserted-by":"crossref","unstructured":"M\u2019Raihi, D., Bellare, M., Hoornaert, F., Naccache, D., Ranen, O.: RFC 4226 - HOTP: An HMAC-Based One-Time Password Algorithm. Technical report, IETF (2005)","DOI":"10.17487\/rfc4226"},{"key":"11_CR19","doi-asserted-by":"crossref","unstructured":"M\u2019Raihi, D., Machani, S., Pei, M., Rydell, J.: RFC 6238 - TOTP: Time-Based One-Time Password Algorithm. Technical report, IETF (2011)","DOI":"10.17487\/rfc6238"},{"key":"11_CR20","doi-asserted-by":"crossref","unstructured":"Mukhopadhyay, S., Argles, D.: An Anti-Phishing mechanism for single sign-on based on QR-code. In: 2011 International Conference on Information Society (i-Society), pp. 505\u2013508. IEEE (2011)","DOI":"10.1109\/i-Society18435.2011.5978554"},{"key":"11_CR21","doi-asserted-by":"crossref","unstructured":"Pintor Maestre, D.: QRP: An improved secure authentication method using QR codes (2012)","DOI":"10.12968\/sece.2012.1.68"},{"key":"11_CR22","unstructured":"Risk Analytics. $${\\$70}$$ Million Stolen From U.S. Banks With Zeus Trojan"},{"key":"11_CR23","unstructured":"Starnberger, G., Froihofer, L., Goeschka, K.M.: QR-TAN: Secure mobile transaction authentication. In: International Conference on Availability, Reliability and Security, 2009. ARES 2009, pp. 578\u2013583. IEEE (2009)"}],"container-title":["IFIP Advances in Information and Communication Technology","ICT Systems Security and Privacy Protection"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-18467-8_11","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,5,27]],"date-time":"2025-05-27T21:22:32Z","timestamp":1748380952000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-18467-8_11"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2015]]},"ISBN":["9783319184661","9783319184678"],"references-count":23,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-18467-8_11","relation":{},"ISSN":["1868-4238","1868-422X"],"issn-type":[{"type":"print","value":"1868-4238"},{"type":"electronic","value":"1868-422X"}],"subject":[],"published":{"date-parts":[[2015]]},"assertion":[{"value":"9 May 2015","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}}]}}