Methods for Thwarting Man-In-The-Middle Authentication Hacking

摘要

Methods for user authentication over unsecured networks are provided. Such methods rely on the user having one or two electronic devices, comprising two unique network addresses, and the methods seek to verify that the two network addresses are linked to geographic locations that are proximate to one another at the time of the authentication. Location information reported from user devices is not employed, rather, third-party resources are queried about each network address. A man-in-the-middle attack is suggested whenever the two geographic locations are not within a reasonable proximity of one another.