Open in app

Sign in

Write

Sign in

Detection of Fake Log-In Page

Hitoshi Kokumai
2 min readFeb 8, 2021

--

“Home working increases cyber-security fears” https://www.bbc.com/news/business-55824139

In this BBC report it reads “Staff get emails sent to them pretending to be from the service desk, asking them to reset their log-in passwords.

This issue can be mitigated. We hope to help detect fake log-in pages built by phishers; Enable the user to register an image of their own (not shared on SNS) as a credential of the genuine log-in server.

When the genuine service desk sends an email to a user to ask them to reset their log-in password, the genuine log-in page should be able to show the user’s image (along with dozens of other images). The user, who finds their own image, could be reasonably assured that they are watching the genuine log-in page.

If the user is guided to a log-in page that does not show any image that the user can recognize right away, it is suspected to be a fake log-in page — Beware!

The image to register as a credential of the genuine log-in page should desirably be of episodic memory. We announced this method 18 years ago.

Ref: “Digital Identity for Global Citizens”

Remark: Crucial in the scheme is “”show the user’s image ALONG WITH DOZENS OF OTHER IMAGES”.

< References >

Summary and Brief History — Expanded Password System

Image-to-Code Conversion by Expanded Password System

Proposition on How to Build Sustainable Digital Identity Platform

External Body Features Viewed as ‘What We Are’

History, Current Status and Future Scenarios of Expanded Password System

Negative Security Effect of Biometrics Deployed in Cyberspace

Removal of Passwords and Its Security Effect

Availability-First Approach

Update: Questions and Answers — Expanded Password System and Related Issues (30/June/2020)

< Videos on YouTube>

Slide: Outline of Expanded Password System (3minutes 2seconds)

Demo: Simplified Operation on Smartphone for consumers (1m41s)

Demo: High-Security Operation on PC for managers (4m28s)

Demo: Simple capture and registration of pictures by users (1m26s)

Slide: Biometrics in Cyber Space — “below-one” factor authentication

< Latest Media Articles Published in 2020 Spring>

Digital Identity — Anything Used Correctly Is Useful https://www.valuewalk.com/2020/05/digital-identity-biometrics-use/

‘Easy-to-Remember’ is one thing ‘Hard-to-Forget’ is another https://www.paymentsjournal.com/easy-to-remember-is-one-thing-hard-to-forget-is-another/

Technology
Security
Digital Identity
Authentication
Passwords

--

--

Hitoshi Kokumai
Hitoshi Kokumai

Written by Hitoshi Kokumai

28 Followers
2 Following

Advocate of ‘Identity Assurance by Our Own Volition and Memory’, Inventor of Expanded Password System and Founder of Mnemonic Identity Solutions Limited in UK.

No responses yet

Help

Status

About

Careers

Press

Blog

Privacy

Terms

Text to speech

Teams