The metaverse’s three-stage authentication system

In recent years, many computer scientists have been exploring the idea of ​​a metaverse, an online space in which users can access different virtual environments and immersive experiences, using VR and AR headsets. While navigating the metaverse, users may also share personal data, whether to purchase goods, contact other users, or for other purposes.

Previous studies have consistently highlighted the limitations of password authentication systems, as there are now many cyberattacks and hacking strategies. to increase Safety of users navigating the metaverse, and thus, password-based authentication would be far from ideal.

This inspired a team of researchers at VIT-AP University in India to create MetaSecure, a passwordless authentication system for Metaverses. This system was presented in a previously published paper arXivcombines three different authentication technologies, namely device authentication, facial recognition and physical security keys.

“The concept of the metaverse promotes the sustainable growth of human civilizations, and promotes communication on a virtual platform,” Sippy Chakaravarthy and Aditya Mitra, two of the researchers who conducted the study, told Tech Xplore. In such a scenario, the security of the individual digital identity is a major concern. And so, we came up with MetaSecure, which is a new authentication system. ”

MetaSecure is designed to dramatically increase the security of the metaverse, protecting users as they engage in a range of virtual activities. The authentication scheme can secure a wide range of files Personal Data and property, including digital assets, online identities, avatars, and financial information.

MetaSecure ensures that digital identities, digital assets and more Sensitive information Chakravarthy and Mitra explained that in the virtual world of the metaverse it is protected and checked.

A user registers their device and physical security key. To log in, users need to pass three security checks, facial recognition, physical security key and device verification. The uniqueness of MetaSecure lies in the use of FIDO2 standards that ensure all users are in a real metaverse, and will be useful in monitoring The number of fake users on virtual reality platforms.

MetaSecure can have an advantage over other passwordless authentication systems introduced in the past, in that it implements three different layers of authentication, including device verification, which is known to be very difficult to circumvent. In addition, this authentication system comes in a simple SDK that can be implemented on practically any device, including VR and AR devices.

“Through several landmark studies, we discovered that the rise in cybercrime on VR platforms was associated with users who did not have a unique verified identity,” said Chakaravarthy and Mitra. Extensive research has found that password-based authentication is not as effective as other methods, due to attacks including social engineering, keylogging, phishing, phishing, etc. With MetaSecure, we remove vulnerabilities for these known attacks. ”

In the future, authentication systems such as MetaSecure could help secure Metaverse, Prevent a variety of accidents and data breaches. For example, it can protect users from theft of digital identities, personal data, and avatars, while also protecting them from harassment, cyberstalking, and many other cybercrimes that can occur on virtual reality platforms.

“MetaSecure has great scope in future research, as it can also be implemented in transactions and the exchange of sensitive information across augmented realityin which the FIDO2-enabled security key is used authentication It will ensure the confidentiality and privacy of the users,” added Chakaravarthy and Mitra.

© 2023 Science X Network