One-time password password authentication scheme based on the negative database

被引:15
|
作者
Zhao, Dongdong [1 ,2 ]
Luo, Wenjian [1 ]
机构
[1] Univ Sci & Technol China, Sch Comp Sci & Technol, Anhui Prov Key Lab Software Engn Comp & Commun, Hefei 230027, Anhui, Peoples R China
[2] Wuhan Univ Technol, Sch Comp Sci & Technol, Wuhan 430070, Hubei, Peoples R China
来源
ENGINEERING APPLICATIONS OF ARTIFICIAL INTELLIGENCE | 2017年 / 62卷
基金
中国国家自然科学基金;
关键词
One-time password; Authentication; Negative database; One-way hash function; PRIVACY; CRYPTANALYSIS;
D O I
10.1016/j.engappai.2016.11.009
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
In this paper, a novel one-time password authentication scheme based on the negative database (NDB) is proposed. The authentication data, which involve a user password and random number, are converted to an NDB before they are transmitted to the network. Recovering the original database (DB) from an NDB is an NP-hard problem. Even if the data transmitted in the network have been intercepted by an attacker, the attacker cannot recover the password due to the hardness of reversing the NDB. The proposed scheme is the first one-time password authentication scheme based on the NDB. Following the method used in this paper, the NDB can be added to other authentication schemes as an extra layer to further improve security. The proposed scheme can be adopted into other applications such as business management, network-based consumer electronics, and intelligent household systems.
引用
收藏
页码:396 / 404
页数:9
相关论文
共 50 条
  • [41] Authentication mechanism using one-time password for 802.11 wireless LAN
    Vaidya, Binod
    Lee, SangDuck
    Han, Jae-Kyun
    Han, SeungJo
    COMPUTER SCIENCE - THEORY AND APPLICATIONS, 2006, 3967 : 619 - 628
  • [42] "Speak, friend, and enter" - Secure, Spoken One-Time Password Authentication
    Latvala, Outi-Marja
    Peng, Chengyuan
    Honkamaa, Petri
    Halunen, Kimmo
    2018 9TH IFIP INTERNATIONAL CONFERENCE ON NEW TECHNOLOGIES, MOBILITY AND SECURITY (NTMS), 2018,
  • [43] An Empirical Study of SMS One-Time Password Authentication in Android Apps
    Ma, Siqi
    Feng, Runhan
    Li, Juanru
    Liu, Yang
    Nepal, Surya
    Ostry, Diethelm
    Bertino, Elisa
    Deng, Robert H.
    Ma, Zhuo
    Jha, Sanjay
    35TH ANNUAL COMPUTER SECURITY APPLICATIONS CONFERENCE (ACSA), 2019, : 339 - 354
  • [44] Ubiquitous One-Time Password Service Using the Generic Authentication Architecture
    Chunhua Chen
    Chris J. Mitchell
    Shaohua Tang
    Mobile Networks and Applications, 2013, 18 : 738 - 747
  • [45] OPA: A one-time password system
    Harris, JA
    2002 INTERNATIONAL CONFERENCE ON PARALLEL PROCESSING, PROCEEDINGS OF THE WORKSHOPS, 2002, : 25 - 29
  • [46] An enhanced one-time password implementation
    Guan, TT
    SAM '05: Proceedings of the 2005 International Conference on Security and Management, 2005, : 357 - 363
  • [47] Password Authentication Using One-Time Key-Based Signature and Homomorphic Encryption
    Im, Jong-Hyuk
    Lee, Mun-Kyu
    ADVANCES ON BROAD-BAND WIRELESS COMPUTING, COMMUNICATION AND APPLICATIONS, 2017, 2 : 467 - 474
  • [48] A new One-time Password Method
    Huang, Yun
    Huang, Zheng
    Zhao, Haoran
    Lai, Xuejia
    2013 INTERNATIONAL CONFERENCE ON ELECTRONIC ENGINEERING AND COMPUTER SCIENCE (EECS 2013), 2013, 4 : 32 - 37
  • [49] Time-bounded based password authentication scheme
    Chang, CC
    Kuo, JY
    Lee, JS
    2005 INTERNATIONAL CONFERENCE ON CYBERWORLDS, PROCEEDINGS, 2005, : 117 - 122
  • [50] An enhanced Kerberos protocol based on one-time password
    Ma, Limin
    Zhu, Yuesheng
    ICIC Express Letters, 2014, 8 (09): : 2497 - 2502
12345