Secure self-checkout kiosks using Alma API with two-factor authentication

Author

Ron BULAON, Singapore Management UniversityFollow

Publication Type

Conference Paper

Version

publishedVersion

Publication Date

8-2021

Abstract

Self-checkout kiosks have become a staple feature of many modern and digitized libraries. These devices are used by library patrons for self-service item loans. Most implementations are not new, in fact many of these systems are simple, straight forward and work as intended. But behind this useful technology, there is a security concern on authentication that has to be addressed.

In my proposed presentation, I will discuss the risk factors of self-checkout kiosks and propose a solution using Alma APIs. I will address the technical shortcomings of the current implementations, compared to the proposed solution, and where the weakest link lies. The discussion will also include a demonstration of a working Proof-of-Concept (POC) in Python to show how Two-Factor authentication is the simplest yet best suited approach for the current scenario and why other seemingly possible solutions are not fitted for the current situation.

Keywords

Security, Authentication, Self-checkout, Kiosk, MFA, Multi-factor authentication, Two-factor authentication, API, One-time password

Discipline

Information Security | Library and Information Science

Publication

IGELU 2021 Digital Conference, August 23-26

First Page

1

Last Page

25

Embargo Period

8-25-2021

Citation

BULAON, Ron. Secure self-checkout kiosks using Alma API with two-factor authentication. (2021). IGELU 2021 Digital Conference, August 23-26. 1-25.
Available at: https://ink.library.smu.edu.sg/library_research/179

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-No Derivative Works 4.0 International License.