Authors: Kritika Kumari Ojha
Abstract: Phishing remains a critical cybersecurity threat, as traditional blacklist-based systems struggle against rapidly evolving domains and zero-day attacks. While machine learning (ML) has emerged as an adaptive solution for detection, the ultimate defense lies in re-engineering the authentication handshake itself. This paper explores the transition from "pass/fail" binary assertions toward a richer, contextual verification ecosystem powered by FIDO (Fast Identity Online) standards. We analyze how WebAuthn and CTAP2 shift the paradigm from possession-based secrets to high-assurance, phishing-resistant identity verification.
DOI:
