CFP last date
20 January 2025
Reseach Article

Preventing Shoulder Surfing Attack by Changing Flow of Card Payment System

Published on June 2016 by Mugdha Shirlekar, Nehal Kadu, Suyog Akolkar
National Conference on Advances in Computing, Communication and Networking
Foundation of Computer Science USA
ACCNET2016 - Number 7
June 2016
Authors: Mugdha Shirlekar, Nehal Kadu, Suyog Akolkar
2f7107cb-b9a6-4978-a656-7646b646d2d6

Mugdha Shirlekar, Nehal Kadu, Suyog Akolkar . Preventing Shoulder Surfing Attack by Changing Flow of Card Payment System. National Conference on Advances in Computing, Communication and Networking. ACCNET2016, 7 (June 2016), 1-4.

@article{
author = { Mugdha Shirlekar, Nehal Kadu, Suyog Akolkar },
title = { Preventing Shoulder Surfing Attack by Changing Flow of Card Payment System },
journal = { National Conference on Advances in Computing, Communication and Networking },
issue_date = { June 2016 },
volume = { ACCNET2016 },
number = { 7 },
month = { June },
year = { 2016 },
issn = 0975-8887,
pages = { 1-4 },
numpages = 4,
url = { /proceedings/accnet2016/number7/25009-2303/ },
publisher = {Foundation of Computer Science (FCS), NY, USA},
address = {New York, USA}
}
%0 Proceeding Article
%1 National Conference on Advances in Computing, Communication and Networking
%A Mugdha Shirlekar
%A Nehal Kadu
%A Suyog Akolkar
%T Preventing Shoulder Surfing Attack by Changing Flow of Card Payment System
%J National Conference on Advances in Computing, Communication and Networking
%@ 0975-8887
%V ACCNET2016
%N 7
%P 1-4
%D 2016
%I International Journal of Computer Applications
Abstract

Security is provided to grant access to a legal user and to prevent the system from an illegal or non-authorized person. SHOULDER ATTACK is one of the latest weapons that are used by hackers or adversaries to hack an account or to authenticate in a secure zone. When a user uses a Chip+PIN credit card at a POS terminal, the POS machine will ask for PIN to be entered then on entering PIN in the terminal the transaction gets completed. To complete the transaction user need to provide four digit PIN number on that device. While providing PIN in front of friends, relative or unknown person, it is affected by "Shoulder Surfing attack". In a shoulder surfing attack, password can be easily obtained by simply looking at the fingers of the user or by making video while user enters the password. So there is a need to develop a secure system for credit/debit card transactions that will avoid the SS and another similar type of attacks. The proposed system must contain minimum hardware changes and secure algorithms. The approach is to divert the flow of current system in such a way that whenever the user needs to put PIN code, he will be using his mobile phone to type that pin-code. The user will get the request to enter the pin code on his/her phone itself. The project proposes the technology of secure authentication system to avoid shoulder surfing (SS) attack and also the problem of identity theft is resolved to increase the faith of users in the system.

References
  1. Alexander De Luca, Roman Weiss, Heinrich Hussmann, 2007. "Pass Shape - Stroke based ShapePasswords"OZCHI '07.
  2. Lev Ginzburg, Rockaway,"User Authentication System and Method", NJ (US), 2006.
  3. V. Roth, K. Richter, and R. Freidinger, "A PIN-entry method resilient against shoulder surfing". In CCS '04: Proceedings of the 11th ACM conference on Computer and communications security, pages 236-245, New York, NY, USA, ACM, 2004.
  4. Bogdan Hoanca, Kenrick Mock 2006. "Secure graphical password-a system for high traffic public areas," ETRA '06
  5. Shakir Ullah Shah, Fazal-e-Hadi, Fahad Bin Muhaya,"Secure User Authentication in Multimedia Systems", Peshawar, Pakistan, IEEE, 2010.
  6. Syed Shabih ul Hasan Naqvi, Samiullah Afzal, "Operation Code Authentication", Peshawar, Pakistan,IEEE,2010.
Index Terms

Computer Science
Information Sciences

Keywords

Shoulder Surfing (ss) Point Of Sale (pos) Personal Identification Number (pin).