Studying Notifications for Risk-based Authentication


Supervision: Philipp Markert

Start date: as soon as possible

Duration: 3 Monate (Bachelor) / 6 Monate (Master)

More details:


Risk-based authentication is used to increase the security of user accounts by checking additional information besides the authentication secret, e.g., the location from where the attempt was initiated, when it was initiated, or device that was used. This information is compared to previously collected information to calculate a risk score and decide how to proceed with the authentication attempt. It is possible to permit or block the request or to include an additional check. The risk scores as well as the wording is crucial in order to make sure that users understand the process and act accordingly. Therefor, it is important that the message which are sent as part of this process are understandable so that users can act appropriately.

Hence, the task of this thesis is to study the risk-based authentication message. This will be done by developing a survey based that is based around the aforementioned messages.


  • Profound programming skills
  • (Advanced in web development)