M
Mohammad Mannan
Researcher at Concordia University
Publications - 102
Citations - 1912
Mohammad Mannan is an academic researcher from Concordia University. The author has contributed to research in topics: Password & Authentication. The author has an hindex of 21, co-authored 85 publications receiving 1629 citations. Previous affiliations of Mohammad Mannan include National Institute of Advanced Industrial Science and Technology & Concordia University Wisconsin.
Papers
More filters
Proceedings ArticleDOI
From Very Weak to Very Strong: Analyzing Password-Strength Meters
TL;DR: Light is shed on how the server-end of some meters functions, examples of highly inconsistent strength outcomes for the same password in different meters are provided, and examples of many weak passwords being labeled as strong or even very strong may confuse users in choosing a stronger password.
Book ChapterDOI
Using a personal device to strengthen password authentication from an untrusted computer
TL;DR: The proposed protocol (MP-Auth) is intended to safeguard passwords from keyloggers, other malware (including rootkits), phishing attacks and pharming, as well as to provide transaction security to foil session hijacking.
Journal ArticleDOI
Revisiting Defenses against Large-Scale Online Password Guessing Attacks
TL;DR: This paper proposes a new Password Guessing Resistant Protocol (PGRP), derived upon revisiting prior proposals designed to restrict large-scale online dictionary attacks, and finds it more promising than existing proposals.
Using a Personal Device to Strengthen Password Authentication from an Untrusted Computer (Revised March 2007)
TL;DR: In this article, the authors proposed MP-Auth, which cryptographically separates a user's long-term secret input from (typically untrusted) client PCs; a client PC performs most computations but has access only to temporary secrets.
Proceedings ArticleDOI
Security and usability: the gap in real-world online banking
TL;DR: It is found that many security requirements of online banking are too difficult for regular users to follow, and believe that some marketing-related messages about safety and security actually mislead users.