{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,9,11]],"date-time":"2025-09-11T19:07:11Z","timestamp":1757617631778,"version":"3.44.0"},"reference-count":26,"publisher":"Springer Science and Business Media LLC","issue":"3","license":[{"start":{"date-parts":[[2025,4,7]],"date-time":"2025-04-07T00:00:00Z","timestamp":1743984000000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,4,7]],"date-time":"2025-04-07T00:00:00Z","timestamp":1743984000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Iran J Comput Sci"],"published-print":{"date-parts":[[2025,9]]},"DOI":"10.1007\/s42044-025-00259-3","type":"journal-article","created":{"date-parts":[[2025,4,7]],"date-time":"2025-04-07T02:12:53Z","timestamp":1743991973000},"page":"1023-1034","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["One-time password authentication based on QR code and hash chain"],"prefix":"10.1007","volume":"8","author":[{"given":"Divyans","family":"Mahansaria","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Uttam Kumar","family":"Roy","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2025,4,7]]},"reference":[{"key":"259_CR1","doi-asserted-by":"publisher","first-page":"18121","DOI":"10.1109\/ACCESS.2023.3243114","volume":"11","author":"F Binbeshr","year":"2023","unstructured":"Binbeshr, F., Por, L.Y., Kiah, M.L.M., Zaidan, A.A., Imam, M.: Secure PIN-entry method using one-time PIN (OTP). IEEE Access 11, 18121\u201318133 (2023)","journal-title":"IEEE Access"},{"key":"259_CR2","doi-asserted-by":"crossref","unstructured":"Khan, R.H., Miah, J.: Performance Evaluation of a new one-time password (OTP) scheme using stochastic petri net (SPN). In: IEEE World AI IoT Congress (AIIoT), Seattle, USA, pp. 407\u2013412 (2022)","DOI":"10.1109\/AIIoT54504.2022.9817203"},{"issue":"1","key":"259_CR3","first-page":"77","volume":"12","author":"VNH Kollipara","year":"2023","unstructured":"Kollipara, V.N.H., Kalakota, S.K., Chamarthi, S., Ramani, S., Malik, P., Karuppiah, M.: Timestamp based OTP and enhanced RSA key exchange scheme with SIT encryption to secure IoT devices. J. Cyber Secur. Mob. 12(1), 77\u2013102 (2023)","journal-title":"J. Cyber Secur. Mob."},{"key":"259_CR4","doi-asserted-by":"publisher","first-page":"6451","DOI":"10.1007\/s11276-023-03455-w","volume":"30","author":"A Aparicio","year":"2024","unstructured":"Aparicio, A., Mart\u00ednez-Gonz\u00e1lez, M.M., Carde\u00f1oso-Payo, V.: App-based detection of vulnerable implementations of OTP SMS APIs in the banking sector. Wirel. Netw. 30, 6451\u20136464 (2024)","journal-title":"Wirel. Netw."},{"key":"259_CR5","doi-asserted-by":"crossref","unstructured":"M\u2019Raihi, D., Bellare, M., Hoornaert, F., Naccache, D., Ranen, O.: HOTP: an HMAC-based one-time password algorithm. In: Internet Engineering Task Force (IETF) RFC 4226 (2005)","DOI":"10.17487\/rfc4226"},{"key":"259_CR6","doi-asserted-by":"crossref","unstructured":"M\u2019Raihi, D., Machani, S., Pei, M., Rydell, J.: TOTP: time-based one-time password algorithm. In: Internet Engineering Task Force (IETF) RFC 6238 (2011)","DOI":"10.17487\/rfc6238"},{"issue":"4","key":"259_CR7","first-page":"131","volume":"5","author":"L Lumburovska","year":"2021","unstructured":"Lumburovska, L., Dobreva, J., Andonov, S., Trpcheska, H.M., Dimitrova, V.: A comparative analysis of HOTP and TOTP authentication algorithms. Which one to choose? Secur. Future 5(4), 131\u2013136 (2021)","journal-title":"Secur. Future"},{"key":"259_CR8","doi-asserted-by":"publisher","first-page":"595","DOI":"10.4028\/www.scientific.net\/AMM.411-414.595","volume":"411\u2013414","author":"JX Zhao","year":"2013","unstructured":"Zhao, J.X.: Research and design on an improved TOTP authentication. Appl. Mech. Mater. 411\u2013414, 595\u2013599 (2013)","journal-title":"Appl. Mech. Mater."},{"issue":"4","key":"259_CR9","first-page":"436","volume":"12","author":"Y Kouraogo","year":"2020","unstructured":"Kouraogo, Y., Orhanou, G., Elhajji, S.: Advanced security of two-factor authentication system using stego QR code. Int. J. Inf. Comput. Secur. 12(4), 436\u2013449 (2020)","journal-title":"Int. J. Inf. Comput. Secur."},{"key":"259_CR10","doi-asserted-by":"publisher","first-page":"657","DOI":"10.1109\/TIP.2020.3037524","volume":"30","author":"I Barron","year":"2020","unstructured":"Barron, I., Yeh, H.J., Dinesh, K., Sharma, G.: Dual modulated QR codes for proximal privacy and security. IEEE Trans. Image Process. 30, 657\u2013669 (2020)","journal-title":"IEEE Trans. Image Process."},{"key":"259_CR11","doi-asserted-by":"publisher","first-page":"525","DOI":"10.1007\/s10207-016-0349-6","volume":"16","author":"C Huang","year":"2016","unstructured":"Huang, C., Zhang, Y., Lin, L., Wang, W., Wang, S.: Mutual authentications to parties with QR-code applications in mobile systems. Int. J. Inf. Secur. 16, 525\u2013540 (2016)","journal-title":"Int. J. Inf. Secur."},{"key":"259_CR12","doi-asserted-by":"publisher","first-page":"381","DOI":"10.1007\/s11277-016-3374-x","volume":"90","author":"MB Krishna","year":"2016","unstructured":"Krishna, M.B., Dugar, A.: Product authentication using QR codes: a mobile application to combat counterfeiting. Wirel. Pers. Commun. 90, 381\u2013398 (2016)","journal-title":"Wirel. Pers. Commun."},{"key":"259_CR13","doi-asserted-by":"crossref","unstructured":"Tkachenko, I., Puech, W., Destruel, C., Strauss, O., Gaudin, J., Guichard, C.: Two-level QR code for private message sharing and document authentication. IEEE Trans. Inf. Forens. Secur. 11(3), 571\u2013583 (2016)","DOI":"10.1109\/TIFS.2015.2506546"},{"issue":"11","key":"259_CR14","doi-asserted-by":"publisher","first-page":"770","DOI":"10.1145\/358790.358797","volume":"24","author":"L Lamport","year":"1981","unstructured":"Lamport, L.: Password authentication with insecure communication. Commun. ACM 24(11), 770\u2013772 (1981)","journal-title":"Commun. ACM"},{"key":"259_CR15","doi-asserted-by":"crossref","unstructured":"Haller, N.: The S\/KEY one-time password system. In: Proceedings of ISOC Symposium on Network and Distributed System Security, San Diego, USA, pp. 151\u2013157 (1994)","DOI":"10.17487\/rfc1760"},{"key":"259_CR16","doi-asserted-by":"publisher","first-page":"508","DOI":"10.1002\/sec.340","volume":"5","author":"M Eldefrawy","year":"2012","unstructured":"Eldefrawy, M., Khan, M., Alghathbar, K., Kim, T., Elkamchouchi, H.: Mobile one-time passwords: two-factor authentication using mobile phones. J. Secur. Commun. Netw. 5, 508\u2013516 (2012)","journal-title":"J. Secur. Commun. Netw."},{"key":"259_CR17","doi-asserted-by":"crossref","unstructured":"Goyal, V., Abraham, A., Sanyal, S., Han, S.: The N\/R one-time password system. In: Proceedings of International Conference on Information Technology: Coding and Computing (ITCC\u201905), Las Vegas, USA, pp. 733\u2013738 (2005)","DOI":"10.1109\/ITCC.2005.275"},{"issue":"11","key":"259_CR18","first-page":"2515","volume":"E85\u2013B","author":"T Yeh","year":"2002","unstructured":"Yeh, T., Shen, H., Hwang, J.: A secure one-time password authentication scheme using smart cards. IEICE Trans. Commun. E85\u2013B(11), 2515\u20132518 (2002)","journal-title":"IEICE Trans. Commun."},{"key":"259_CR19","doi-asserted-by":"publisher","first-page":"138","DOI":"10.1016\/j.cose.2018.02.010","volume":"75","author":"C Park","year":"2018","unstructured":"Park, C.: One-time password based on Hash chain without shared secret and re-registration. Comput. Secur. 75, 138\u2013146 (2018)","journal-title":"Comput. Secur."},{"key":"259_CR20","doi-asserted-by":"crossref","unstructured":"Kogan, D., Manohar, N., Boneh, D.: T\/Key: second-factor authentication from secure hash chains. In: Proceedings of ACM SIGSAC Conference on Computer and Communications Security, pp. 983\u2013999. ACM, Dallas, USA (2017)","DOI":"10.1145\/3133956.3133989"},{"key":"259_CR21","doi-asserted-by":"crossref","unstructured":"Bicakci, K., Baykal, N.: Infinite length Hash chains and their applications. In: Proceedings of Eleventh IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises (WETICE\u201902), pp. 57\u201361. IEEE Computer Society, Pittsburgh, USA (2002)","DOI":"10.1109\/ENABL.2002.1029989"},{"key":"259_CR22","doi-asserted-by":"crossref","unstructured":"Pietro, R.D., Mancini, L.V., Durante, A., Patil, V.: Addressing the shortcomings of one-way chains. In: Proceedings of ACM Symposium on Information, Computer and Communications Security, pp. 289\u2013296. ACM, Taiwan (2006)","DOI":"10.1145\/1128817.1128860"},{"issue":"7","key":"259_CR23","doi-asserted-by":"publisher","first-page":"420","DOI":"10.1145\/364520.364540","volume":"7","author":"R Durstenfeld","year":"1964","unstructured":"Durstenfeld, R.: Algorithm 235: random permutation. Commun. ACM 7(7), 420\u2013421 (1964)","journal-title":"Commun. ACM"},{"key":"259_CR24","doi-asserted-by":"crossref","unstructured":"Ma, S., Feng, R., Li, J., Liu, Y., Nepal, S., Diethelm, B.E., Deng, R.H., Ma, Z., Jha, S.: An empirical study of SMS one-time password authentication in android apps. In: ACM 35th Annual Computer Security Applications Conference (ACSAC \u201919), pp. 339\u2013354. ACM, San Juan, USA (2019)","DOI":"10.1145\/3359789.3359828"},{"key":"259_CR25","doi-asserted-by":"publisher","first-page":"123177","DOI":"10.1109\/ACCESS.2024.3445931","volume":"12","author":"M Bart\u0142omiejczyk","year":"2024","unstructured":"Bart\u0142omiejczyk, M., Fray, I.E.: Device risk analysis protocol for SMS-based OTP authentication. IEEE Access 12, 123177\u2013123192 (2024)","journal-title":"IEEE Access"},{"key":"259_CR26","doi-asserted-by":"crossref","unstructured":"Ozkan, C., Bicakci, K.: Security analysis of mobile authenticator applications. In: IEEE International Conference on Information Security and Cryptology (ISCTURKEY), Ankara, Turkey, pp. 18\u201330 (2020)","DOI":"10.1109\/ISCTURKEY51113.2020.9308020"}],"container-title":["Iran Journal of Computer Science"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s42044-025-00259-3.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1007\/s42044-025-00259-3\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s42044-025-00259-3.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,9,6]],"date-time":"2025-09-06T11:34:35Z","timestamp":1757158475000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/s42044-025-00259-3"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,4,7]]},"references-count":26,"journal-issue":{"issue":"3","published-print":{"date-parts":[[2025,9]]}},"alternative-id":["259"],"URL":"https:\/\/doi.org\/10.1007\/s42044-025-00259-3","relation":{},"ISSN":["2520-8438","2520-8446"],"issn-type":[{"type":"print","value":"2520-8438"},{"type":"electronic","value":"2520-8446"}],"subject":[],"published":{"date-parts":[[2025,4,7]]},"assertion":[{"value":"7 December 2024","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"16 March 2025","order":2,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"7 April 2025","order":3,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}},{"order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Declarations"}},{"value":"The authors have no relevant financial or non-financial interests to disclose.","order":2,"name":"Ethics","group":{"name":"EthicsHeading","label":"Conflict of interest"}},{"value":"Not applicable.","order":3,"name":"Ethics","group":{"name":"EthicsHeading","label":"Ethics approval and consent to participate"}},{"value":"Not applicable.","order":4,"name":"Ethics","group":{"name":"EthicsHeading","label":"Consent for publication"}}]}}