Efficient and secure password-based authentication protocols against guessing attacks

被引:9
|
作者
Kwon, T [1 ]
Song, J [1 ]
机构
[1] Yonsei Univ, Dept Comp Sci, Seoul 120749, South Korea
来源
COMPUTER COMMUNICATIONS | 1998年 / 21卷 / 09期
关键词
security; authentication; key exchange; cryptographic protocol; password;
D O I
10.1016/S0140-3664(98)00153-4
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
We propose authentication and key exchange protocols which are both efficient and secure against password guessing attacks. Conventional authentication protocols have assumed that a strong secret should be shared between communicating participants, in the light of a threat of guessing attacks. A cryptographically long secret would be favored for security reasons, but it is not suitable for users to remember. Recent password-based protocols to defeat guessing attacks are more expensive than previous ones, in terms of the computation and communication costs. Using a one-time pad and a strong one-way hash function, we promote both security and efficiency. Thereby, we also verify our protocol formally. (C) 1998 Elsevier Science B.V.
引用
收藏
页码:853 / 861
页数:9
相关论文
共 50 条
  • [31] On Unlinkability of Password-Based Anonymous Authentication
    Shin, SeongHan
    Kobara, Kazukuni
    [J]. IEICE TRANSACTIONS ON FUNDAMENTALS OF ELECTRONICS COMMUNICATIONS AND COMPUTER SCIENCES, 2015, E98A (06) : 1320 - 1324
  • [32] A secure password-based authentication and key agreement scheme using smart cards
    Mishra, Dheerendra
    Das, Ashok Kumar
    Chaturvedi, Ankita
    Mukhopadhyay, Sourav
    [J]. JOURNAL OF INFORMATION SECURITY AND APPLICATIONS, 2015, 23 : 28 - 43
  • [33] A Protocol to Strengthen Password-Based Authentication
    Sandoval, Itzel Vazquez
    Stojkovski, Borce
    Lenzini, Gabriele
    [J]. EMERGING TECHNOLOGIES FOR AUTHORIZATION AND AUTHENTICATION, ETAA 2018, 2018, 11263 : 38 - 46
  • [34] An efficient remote user authentication scheme secure against the off-line password guessing attack by power analysis
    Park, Ji-Hye
    Lee, Ji-Seon
    Chang, Jik Hyun
    [J]. 11TH INTERNATIONAL CONFERENCE ON ADVANCED COMMUNICATION TECHNOLOGY, VOLS I-III, PROCEEDINGS,: UBIQUITOUS ICT CONVERGENCE MAKES LIFE BETTER!, 2009, : 1289 - 1292
  • [35] Secure Authentication Mechanism for Resistance to Password Attacks
    Subangan, S.
    Senthooran, V
    [J]. 2019 19TH INTERNATIONAL CONFERENCE ON ADVANCES IN ICT FOR EMERGING REGIONS (ICTER - 2019), 2019,
  • [36] Authenticated key exchange protocols resistant to password guessing attacks
    Kwon, T
    Song, J
    [J]. IEE PROCEEDINGS-COMMUNICATIONS, 1998, 145 (05): : 304 - 308
  • [37] A Secure and Efficient Password-Based User Authentication Scheme Using Smart Cards for the Integrated EPR Information System
    Tian-Fu Lee
    I-Pin Chang
    Tsung-Hung Lin
    Ching-Cheng Wang
    [J]. Journal of Medical Systems, 2013, 37
  • [38] An efficient client–client password-based authentication scheme with provable security
    Mohammad Sabzinejad Farash
    Mahmoud Ahmadian Attari
    [J]. The Journal of Supercomputing, 2014, 70 : 1002 - 1022
  • [39] Efficient and Strongly Secure Password-Based Server Aided Key Exchange
    Yoneyama, Kazuki
    [J]. PROGRESS IN CRYPTOLOGY - INDOCRYPT 2008, 2008, 5365 : 172 - 184
  • [40] Secure key agreement protocols for three-party against guessing attacks
    Sun, HM
    Chen, BC
    Hwang, T
    [J]. JOURNAL OF SYSTEMS AND SOFTWARE, 2005, 75 (1-2) : 63 - 68
12345