Toward secure mobile applications through proper authentication mechanisms.

Abdulmohsen Saud Albesher; Amal Alkhaldi; Ahmed Aljughaiman

doi:10.1371/journal.pone.0315201

PLoS ONE (Jan 2024)

Toward secure mobile applications through proper authentication mechanisms.

Abdulmohsen Saud Albesher,
Amal Alkhaldi,
Ahmed Aljughaiman

Affiliations

Abdulmohsen Saud Albesher
Amal Alkhaldi
Ahmed Aljughaiman

DOI: https://doi.org/10.1371/journal.pone.0315201
Journal volume & issue: Vol. 19, no. 12
p. e0315201

Abstract

Read online

With the increased number of mobile apps, authentication processes play a key role in verifying users' identities and protecting data from security threats. Utilizing proper authentication techniques is key to protecting computer apps from being hacked. In this paper, we aimed to compare the authentication methods of the sign-up, sign-in, and password recovery processes of 50 e-commerce apps. To ensure accurate data analysis, we checked every app in a separate session and used the "think-aloud" technique while recording the screen. The researchers prepared a list of items that were checked during each session to identify the similarities and differences between tested apps regarding the authentication process. The results of this security analysis unequivocally demonstrated how different apps' designs for authentication processes are. Users' memory and comprehension are burdened by these variances, and no app can ensure that they adhere to recommended standards. The results of this study confirmed the necessity for unified and user-friendly authentication processes. This can be possible by following a usable security framework for the authentication process.

Published in PLoS ONE

ISSN: 1932-6203 (Online)
Publisher: Public Library of Science (PLoS)
Country of publisher: United States
LCC subjects: Medicine; Science
Website: https://journals.plos.org/plosone/

About the journal