Евсеев, Сергей ПетровичАбдуллаев, Вугар Гаджимахмудович2023-11-012023-11-012015Евсеев С. П. Алгоритм мониторинга метода двухфакторной аутентификации на основе системы PassWindow / С. П. Евсеев, В. Г. Абдуллаев // Східно-Європейський журнал передових технологій = Eastern-European Journal of Enterprise Technologies. – 2015. – Т. 2, № 2 (74). – С. 9-16.https://repository.kpi.kharkov.ua/handle/KhPI-Press/70310Рассматриваются основные методы построения систем двухфакторной аутентификации. Анализируется система PassWindow, обеспечивающая двухфакторную аутентификацию на уникальной способности наложения физического шаблона знаков предполагаемого получателя и шаблона штрих-кода, получаемых через электронно-сетевые устройства пользователей. Предлагается практический алгоритм мониторинга данной системы, способный получить уникальный шаблон штрих-кода за фиксированное количество перехватов.The paper deals with the basic methods of constructing a two-factor authentication system based on cryptographic mechanisms for ensuring the cryptographic security of the authenticators formed. Risk assessment of various methods of online attacks against various two-factor authentication systems is carried out. The PassWindow system, which provides two-factor authentication on the unique ability of the matrix particles to transmit information in a way that it is deciphered only when imposing the physical template of characters of the intended recipient and barcode template, obtained through electron-network devices of users is considered. Resistance to the analysis is provided by a unique generation of barcode template of the card as unique statistical images, a sequence of characters or a more extended animated version. The object of the research is the process of improving the integrity and authenticity of data packets in security protocols of banking transactions based on two-factor authentication methods. The subject of the study are control methods and algorithms of the integrity and authenticity of data packets in security protocols of banking transactions based on two-factor authentication methods. The aim is to increase the integrity and authenticity of data packets in security protocols of banking transactions, threat assessment of two-factor authentication methods. A comparative analysis of various two-factor authentication systems with the PassWindow system in withstanding various Internet attack scenario is performed.ruдвухфакторная аутентификацияонлайн-атакисоциальная инженерияtwo-factor authenticationonline attackssocial engineeringArticledoi.org/10.15587/1729-4061.2015.38779https://orcid.org/0000-0002-3348-2267