Multifactor Authentication

Figure 7. Trusted authority assistance in authentication when user is missing two factors.

For example, assume that the user forgot or lost two factors \(F_{2}\) and \(F_{3}\) with the corresponding keys \(S_{1}=f\left(F_{1}\right)\) and \(S_{2}=f\left(F_{2}\right)\). The trusted authority is willing to assist in authentication-two temporary keys \(S_{\Phi_{1}}=f\left(\Phi_{1}\right)\) and \(S_{\Phi_{2}}=f\left(\phi_{2}\right)\) are thus generated and sent to the user via a secure channel. Obtaining these keys and applying the Lagrange interpolation formula with RSA or EIGamal encryption/decryption-based threshold authentication procedure involves the following factors and keys

This allows for gaining access to the device. The proposed solution is designed explicitly to complete the MFA step of the authentication, that is, its usage for SFA and 2FA is not recommended. This is mainly due to the features of the Lagrange interpolation formula. Basically. in the SFA case and without the \(F_{l+1}: T\) factor, the equation at hand can be simply represented as \(S_{1}=S+b_{1} F_{1}\),

i.e., it will become 'a point'. Even adding a random timestamp factor will not provide any valuable level of biometric data protection, since an eavesdropper could be able to immediately recover the factor secret.

The above is not suitable for the 2FA either, since providing two factors allows the curve to have linear behavior,

i.e., the eavesdropper is required two attempts to recover the secrets. However, adding a timestamp factor here allows for providing the necessary level of safety with three actual factors, as discussed below.