Efficient and secure password-based authentication protocols against guessing attacks

被引:9
作者
Kwon, T [1 ]
Song, J [1 ]
机构
[1] Yonsei Univ, Dept Comp Sci, Seoul 120749, South Korea
来源
COMPUTER COMMUNICATIONS | 1998年 / 21卷 / 09期
关键词
security; authentication; key exchange; cryptographic protocol; password;
D O I
10.1016/S0140-3664(98)00153-4
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
We propose authentication and key exchange protocols which are both efficient and secure against password guessing attacks. Conventional authentication protocols have assumed that a strong secret should be shared between communicating participants, in the light of a threat of guessing attacks. A cryptographically long secret would be favored for security reasons, but it is not suitable for users to remember. Recent password-based protocols to defeat guessing attacks are more expensive than previous ones, in terms of the computation and communication costs. Using a one-time pad and a strong one-way hash function, we promote both security and efficiency. Thereby, we also verify our protocol formally. (C) 1998 Elsevier Science B.V.
引用
收藏
页码:853 / 861
页数:9
相关论文
共 50 条
  • [41] A Password-Based User Authentication Scheme for the Integrated EPR Information System
    Zhen-Yu Wu
    Yufang Chung
    Feipei Lai
    Tzer-Shyong Chen
    Journal of Medical Systems, 2012, 36 : 631 - 638
  • [42] A Password-Based User Authentication Scheme for the Integrated EPR Information System
    Wu, Zhen-Yu
    Chung, Yufang
    Lai, Feipei
    Chen, Tzer-Shyong
    JOURNAL OF MEDICAL SYSTEMS, 2012, 36 (02) : 631 - 638
  • [43] Password-based key authentication model - A new approach
    Ibrahim, Yasir Khalil
    IMECS 2007: International Multiconference of Engineers and Computer Scientists, Vols I and II, 2007, : 2388 - 2390
  • [44] A Secure and Robust Password-Based Remote User Authentication Scheme Using Smart Cards for the Integrated EPR Information System
    Ashok Kumar Das
    Journal of Medical Systems, 2015, 39
  • [45] A Secure and Robust Password-Based Remote User Authentication Scheme Using Smart Cards for the Integrated EPR Information System
    Das, Ashok Kumar
    JOURNAL OF MEDICAL SYSTEMS, 2015, 39 (03)
  • [46] Simple password-based encrypted key exchange protocols
    Abdalla, M
    Pointcheval, D
    TOPICS IN CRYPTOLOGY - CT-RSA 2005, PROCEEDINGS, 2005, 3376 : 191 - 208
  • [47] Cryptanalysis of an Efficient and Secure Smart Card Based Password Authentication Scheme
    Liu, Chi-Wei
    Tsai, Cheng-Yi
    Hwang, Min-Shiang
    RECENT DEVELOPMENTS IN INTELLIGENT SYSTEMS AND INTERACTIVE APPLICATIONS (IISA2016), 2017, 541 : 188 - 193
  • [48] A Secure Authentication Mechanism based on SIP with Password Changing
    Yu, Yongchuan
    Xie, Saisai
    Yu, Chunxuan
    2012 INTERNATIONAL CONFERENCE ON FUTURE COMMUNICATION AND COMPUTER TECHNOLOGY (ICFCCT 2012), 2012, : 204 - 209
  • [49] Enhancing of a Password-Based Authentication Scheme Using Smart Cards
    Lee, Youngsook
    Won, Dongho
    ON THE MOVE TO MEANINGFUL INTERNET SYSTEMS: OTM 2009, PT 2, 2009, 5871 : 879 - +
  • [50] An Improved and Effective Secure Password-Based Authentication and Key Agreement Scheme Using Smart Cards for the Telecare Medicine Information System
    Das, Ashok Kumar
    Bruhadeshwar, Bezawada
    JOURNAL OF MEDICAL SYSTEMS, 2013, 37 (05)
12345