Yuesheng Zhu,Limin Ma,Jinjiang Zhang

DOI: https://doi.org/10.1002/sec.1066

IF: 1.968

2014-01-01

Security and Communication Networks

Abstract:As one of the most important trusted third-party-based authentication protocols, Kerberos is widely used to provide authentication service in distributed networks. However, it is vulnerable to common brute force password-guessing attacks because of its password-based mechanism. Some enhanced Kerberos protocols based on public key cryptography were proposed as solutions, but they require excessive computation and communication resources. In this paper, a new enhanced Kerberos protocol with non-interactive zero-knowledge proof is proposed, in which the clients and the authentication server can mutually authenticate each other without revealing any information during the authentication process. Our security analysis and experimental results have shown that the proposed scheme can resist password-guessing attacks and is more convenient and efficient than previous schemes. Copyright (C) 2014 John Wiley & Sons, Ltd.

Zhao Hu,Yuesheng Zhu,Limin Ma

DOI: https://doi.org/10.1109/icon.2012.6506591

2012-01-01

Abstract:Kerberos is a widely-used network authentication protocol based on a trusted third-party. PKINIT, an enhanced Kerberos protocol which uses PKI mechanism, can prevent the password guessing attack, however, it introduces excessive amount of computational power. To enhance the security performance and computation efficiency of Kerberos, in this paper an improved Kerberos protocol based on Diffie-Hellman-DSA (DH-DSA) key exchange is proposed. Mutual authentication and key exchange between the client and Authentication Server (AS) can be simultaneously achieved with the proposed approach. Our experimental and analysis results have demonstrated that this new protocol can resist the password guessing attack and is more efficient and easily deployed than PKINIT.

XIE Qi,CHEN De-ren,YU Xiu-yuan

IF: 2.034

2010-01-01

Systems Engineering

Abstract:In 2009, Park, et al. proposed an efficient remote user authentication protocol. They claimed that their protocol was the first password and smart card based remote user authentication scheme which can resist the off-line password guessing attack, and had many advantages over existing solutions such as no password tables and timestamp, low communication and computational costs. However, this paper shows that their protocol cannot resist the forgery attack and off-line password guessing attack. To overcome the security weaknesses, two improved schemes based on either nonce or timestamp without affecting the merits of the Park, et al. scheme are proposed. Technical discussions are provided to show that the improved protocol is secure, efficient and practical.

吴和生,范训礼,谢俊元

DOI: https://doi.org/10.3969/j.issn.1002-137X.2003.05.044

2003-01-01

Computer Science

Abstract:Some usual one-time password authentication protocols are analyzed. A practical efficient one-time pass-word authentication implementing method is presented based on the symmetric algorithm, which conquers usual chal-lenge-response protocol weakness and can protect user's identity and avoid replay attack etc. It also can boost up thesecurity of the application security system by integrating with it in networks. And the correlative issues are discusseddeeply such as security, reliability and so on.

Hongfeng Zhu

DOI: https://doi.org/10.1002/sec.1182

IF: 1.968

2015-02-10

Security and Communication Networks

Abstract:Authenticated key agreement protocols, aiming at solving the problems to set up a secure channel over public Internet, can achieve authentication of the corresponding participants and confidentiality of data transmission. Nowadays, most of the authenticated key agreement protocols focus on security, efficiency, and user experience at the same time. One‐time password authenticated algorithm, which is that a hash chain can update by itself smoothly and securely through capturing the secure bit of the tip, has the feature of high‐efficient. In addition, biometrics‐based algorithm can make the scheme more secure and more amiable for users. The combination of aforementioned algorithms can lead to a high practical scheme in the universal client/server architecture. Based on these motivations, the paper firstly proposed the new concept of one‐time identity–password (OTIP), which means the identity and the password can be used only once. Then, a new robust biometrics‐based OTIP authenticated key agreement protocol is given based on the OTIP. Security of the protocol is based on the biometric authentication, a secure symmetric encryption and a secure one‐way hash function with the hash chain. At the same time, the proposed protocol can not only refrain from many consuming algorithms but also robust to many kinds of attacks and owns much excellent features. Finally, we provide the secure proof and the efficiency analysis about our proposed scheme. Copyright © 2015 John Wiley & Sons, Ltd. The paper firstly proposed a new concept of one‐time identity–password, which means identity and password can be used only once. Then, we present a provably secure and flexible one‐time identity–password authenticated key agreement scheme based on biometrics. The core ideas of our scheme are features of security and efficiency in the mobile device and server's side and feature of user friendly for the user's side. Through comparing with recently related work, our scheme has satisfactory security, efficiency, and functionality.

computer science, information systems,telecommunications

Xinming Yin,Junhui He,Yi Guo,Dezhi Han,Kuan-Ching Li,Arcangelo Castiglione

DOI: https://doi.org/10.3390/s20205735

IF: 3.9

2020-10-09

Sensors

Abstract:The Time-based One-Time Password (TOTP) algorithm is commonly used for two-factor authentication. In this algorithm, a shared secret is used to derive a One-Time Password (OTP). However, in TOTP, the client and the server need to agree on a shared secret (i.e., a key). As a consequence, an adversary can construct an OTP through the compromised key if the server is hacked. To solve this problem, Kogan et al. proposed T/Key, an OTP algorithm based on a hash chain. However, the efficiency of OTP generation and verification is low in T/Key. In this article, we propose a novel and efficient Merkle tree-based One-Time Password (MOTP) algorithm to overcome such limitations. Compared to T/Key, this proposal reduces the number of hash operations to generate and verify the OTP, at the cost of small server storage and tolerable client storage. Experimental analysis and security evaluation show that MOTP can resist leakage attacks against the server and bring a tiny delay to two-factor authentication and verification time.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

Hung-Min Sun,Her-Tyan Yeh

DOI: https://doi.org/10.1016/j.jcss.2006.03.005

IF: 1.043

2006-01-01

Journal of Computer and System Sciences

Abstract:In an open networking environment, a workstation usually needs to identify its legal users for providing its services. Kerberos provides an efficient approach whereby a trusted third-party authentication server is used to verify users' identities. However, Kerberos enforces the user to use strong cryptographic secret for user authentication, and hence is insecure from password guessing attacks if the user uses a weak password for convenience. In this paper, we focus on such an environment in which the users can use easy-to-remember passwords. In addition to password guessing attacks, perfect forward secrecy (PFS in short) is another important security consideration when designing an authentication and key distribution protocol. Based on the capability of protecting the client's password, the application server's secret key, and the authentication server's private key, we define seven classes of perfect forward secrecy and focus on protocols achieving class-1, class-3, and class-7 due to their hierarchical relations. Then, we propose three secure authentication and key distribution protocols to provide perfect forward secrecy of these three classes. All these protocols are efficient in protecting poorly-chosen passwords chosen by users from guessing attacks and replay attacks.

Song Luo,Jianbin Hu,Zhong Chen

DOI: https://doi.org/10.1109/nswctc.2009.287

2009-01-01

Abstract:Password authentication is one of the simplest and the most convenient authentication mechanisms over insecure networks. One-time password authentication which uses dynamic password helps to enhance the security of password. In this paper, we suggest a new one-time password scheme using the smart card based on the bilinear pairings. By generating temporary identity, our scheme can provide anonymity in authentication process to protect the user's privacy. Based on the Computational Diffie-Hellman Problem, we show that the proposed scheme is secure against forgery attack and ID attack under the random oracle model.

Qiong Li,XinGuang Zou,Huang Lin,Zhaoqing Liu,Xiamu Niu

2006-01-01

Abstract:Kerberos is a commonly used distributed network authentication protocol. Both Windows 2000 and Windows XP adopted Kerberos as their default authentication method. But in the practical application, it still suffers from the password guessing attacks, along with other password related problems, such as no connection to the valid user, forgotten and stolen, etc. In this paper, a solution is proposed to overcome these problems by using a smartcard-based iris key authentication algorithm to replace the password authentication module of Kerberos. Iris key authentication algorithm binds a valid user's iris template and his key monolithically. Secret sharing, error correcting coding and iris authentication are combined to guarantee that the key can be retrieved exactly only when a matching iris is available, but neither the iris template nor the key can be derived from the iris key independently. Integrating the iris key authentication algorithm with smartcard technique can improve the security, usability and maintainability of Kerberos system. The experiment results show that the scheme is feasible and secure.

刘帮涛,罗敏,陈爱国,尹德辉

DOI: https://doi.org/10.13245/j.hust.2013.s1.098

2013-01-01

Abstract:Aimed at the difficulty of using a dynamic password mechanism and the inequity in its management plans, a dynamic password mechanism was proposed based on the trusted computing technique. The mechanism used TPM's secure computation and storage abilities to achieve a secure one-time password authentication scheme. Through comparison with four typical scheme, this mechanism was proved to enhance the attack-resistance, usability, and lower computation complexity of dynamic passwords, and to have better security capabilities in resistance to brute-force, replay attack, etc. Thus it can be successfully applied to the security protection of the electronic transaction.

XU Chun-xiang,HE Xiao-hu

DOI: https://doi.org/10.3969/j.issn.1001-0548.2012.04.023

2012-01-01

Abstract:Three-party password-based authenticated key exchange protocols allow two clients to authenticate each other and establish a shared session key through a trusted server who preserves clients’ passwords or verifiers about passwords.However,because of the low entropy of passwords,password-based authenticated key exchange protocols are vulnerable to dictionary attacks.Based on available protocols,a new efficient three-party password-based authenticated key exchange protocol is proposed by combining the symmetric encryption algorithm with the method of two-party key exchange protocol of Diffie-Hellman.Results indicate that and the proposed protocol can resist against various attacks and provide the perfect forward security.

Yun Huang,Zheng Huang,Haoran Zhao,Xuejia Lai

DOI: https://doi.org/10.1016/j.ieri.2013.11.006

2013-01-01

IERI Procedia

Abstract:One-Time Passwords (OTP) can provide complete protection of the login-time authentication mechanism against replay attacks. In this paper, we propose TSOTP: a new effective simple OTP method that generates a unique passcode for each use. The calculation uses both time stamps and sequence numbers. A two-factor authentication prototype for mobile phones using this method has been developed and has been used in practice for a year.

ZHU Chang-sheng,LIU Peng-hui,WANG Qing-rong,CAO Lai-cheng

DOI: https://doi.org/10.3724/sp.j.1087.2011.01862

2011-01-01

Journal of Computer Applications

Abstract:How to keep mutual anonymity between two entities is one of the critical issues for Trusted Computation(TC).According to the characteristics of TC,an efficient password-based authenticated key exchange scheme was proposed.Adopting threshold cryptography and fuzzy ID set,the scheme achieved mutual anonymity between user and server sharing ID set.On the premise of secure hashing,the analysis and the proving procedure based on the Random Oracle Model(ROM) show this scheme is secure against dictionary attack and resource-depletion DoS(Denial-of-Service) attack under the computational Diffie-Hellman intractability assumption.This scheme effectively preserves the user's privacy and server's privacy,and compared with other schemes such as VIET et al.'s scheme,it is more efficient.

Hong-bin TANG,Xin-song LIU

DOI: https://doi.org/10.3724/sp.j.1087.2012.01381

2012-01-01

Abstract:Password-based authentication and key exchange protocol have been widely used in various network services due to easy memory of password.Unfortunately,password-based authentication scheme also suffers from attacks because of the low entropy of password.In the year 2011,Islam et al.(ISLAM SK H,BISWAS G P.Improved remote login scheme based on ECC.IEEE-International Conference on Recent Trends in Information Technology.Washington,DC: IEEE Computer Society,2011: 1221-1226)proposed an improved remote login scheme based on Elliptic Curve Cryptography(ECC).Whereas,the scheme was vulnerable to stolen-verifier and impersonation attacks and failed to provide mutual authentication.Therefore,the authors proposed a password-based Remote Authentication with Key Agreement(RAKA) protocol using ECC to tackle the problems in Islam et al.'s scheme.RAKA was based on Elliptic Curve Discrete Logarithm Problem(ECDLP) and needed to compute six elliptic curve scale multiplications and seven hash function operations during a protocol run.The efficiency improves by about 15%.It is more secure and efficient than Islam et al.'s scheme.

Zhiyuan Xie,Junhui He,Shaohua Tang

DOI: https://doi.org/10.1109/CIS.2009.109

2009-01-01

Abstract:A novel security scheme at network layer is proposed. It provides mutual authentication between the communication partners by adopting the effective combined public key (CPK) algorithm, which is an identity-based cryptosystem. And each outgoing packet can be digitally signed with CPK-based signature, which uses elliptic curve digital signature algorithm (ECDSA) and may offer equal security with a far smaller key size than RSA' s, to provide packet-level non-repudiation when necessary. In addition, the data transmitted over the network can be encrypted for better security via a symmetric or asymmetric cipher. Compared to similar network security solutions, the proposed scheme is easier to configure and more flexible. The experimental results show that the scheme owns better efficiency.

He Debiao,Chen Jianhua,Hu Jin

2010-01-01

Abstract:He Debiao, Chen Jianhua, Hu Jin School of Mathematics and Statistics, Wuhan University, Wuhan, Hubei 430072, China hedebiao@163.com Abstract: Recently, Abdalla et al. proposed a new gateway-oriented password-based authenticated key exchange (GPAKE) protocol among a client, a gateway, and an authentication server, where each client shares a human-memorable password with a trusted server so that they can resort to the server for authentication when want to establish a shared session key with the gateway. In the letter, we show that a malicious client of GPAKE is still able to gain information of password by performing an undetectable on-line password guessing attack and can not provide the implicit key confirmation. At last, we present a countermeasure to against the attack.

WANG Bin,LIU Gang

DOI: https://doi.org/10.3969/j.issn.1000-7024.2007.12.014

2007-01-01

Abstract:By studying the dynamic password authentication scheme and analyzing the new dynamic password authentication scheme which can resist jacking connection attack mentioned in Ref.[1],the way which protects the key information // is not good enough,although the password in this scheme is dynamic,this scheme can not resist the imitate server attack.To solve those problems,a improved scheme is proposed using Diffie-Hellman key exchange algorithm,the new scheme not only can conquer the security problem of the original scheme but also holds all security characteristics of the original scheme.So the computational complexity is decreased greatly,and the security characteristics is increased.

Shaohua Tang

DOI: https://doi.org/10.3321/j.issn:1000-565X.2001.08.019

2001-01-01

Abstract:Lamport's one-time password authentication is one of the famous password authentication schemes. But there are some disadvantages: when the user re-generates the password chain for the original remote system or generates the password chain for a new remote system, he has to register to the dedicated system again, which is inconvenient and not flexible enough. In order to solve these problems, a kind of one-time password authentication scheme is proposed in the paper. It is shown that our scheme is as secure and almost as efficient as Lamport's scheme, but our scheme is more flexible and convenient than Lamport's scheme.

Xuelian Cao,Zheng Yang,Jianting Ning,Chenglu Jin,Rongxing Lu,Zhiming Liu,Jianying Zhou

DOI: https://doi.org/10.1109/tifs.2024.3386350

IF: 7.231

2024-05-10

IEEE Transactions on Information Forensics and Security

Abstract:Group time-based one-time passwords (GTOTP) is a novel lightweight cryptographic primitive for achieving anonymous client authentication, which enables the efficient generation of time-based one-time passwords on behalf of a group without revealing any information about the actual client's identity beyond their group membership. The security properties of GTOTP regarding anonymity and traceability have been formulated in a static group management setting (where all group members should be determined during the group initialization phase), yet, a formal treatment for real-world dynamic groups (i.e., group members may join and leave at any time) is still an open question. It is non-trivial to construct an efficient GTOTP scheme that can provide a lightweight password generation procedure run by group members and support dynamic group management, allowing group members to join and leave without affecting other members' states (non-disruptively). To address the above challenge, we first define the notion and the security model of dynamic group time-based one-time passwords (DGTOTP) in this work. We then present an efficient DGTOTP construction that can generically transform an asymmetric time-based one-time passwords scheme into a DGTOTP scheme utilizing a chameleon hash function family and a Merkle tree scheme. Within our construction, we particularly tailor an outsourcing solution realizing an issue-first-and-join-later (IFJL) strategy, enabling smooth joining and revocation without disrupting other group members. Moreover, our scheme minimizes symmetric cryptographic operations and maintains constant storage for group members, compared to the linear storage cost that grows rapidly with respect to the lifetime of the GTOTP instance in the previous static GTOTP scheme. Our DGTOTP scheme satisfies stronger security guarantees in a dynamic group management setting without random oracles. Our experimental results confirm the efficiency of our DGTOTP scheme.

computer science, theory & methods,engineering, electrical & electronic

Haimin Jin,Duncan S. Wong,Yinlong Xu

DOI: https://doi.org/10.1007/978-3-540-77048-0_4

2007-01-01

Abstract:One of the prominent advantages of password-only two-server authenticated key exchange is that the user password will remain secure against offline dictionary attacks even after one of the servers has been compromised. The first system of this type was proposed by Yang, Deng and Bao in 2006. The system is efficient with a total of eight communication rounds in one protocol run. However, the security assumptions are strong. It assumes that one particular server cannot be compromised by an active adversary. It also assumes that there exists a secure communication channel between the two servers. Recently, a new protocol has been proposed by the same group of researchers. The new one removes these assumptions, but in return pays a very high price on the communication overhead. It takes altogether ten rounds to complete one protocol run and requires more computation. Therefore, the question remains is whether it is possible to build a protocol which can significantly reduce the number of communication rounds without introducing additional security assumptions or computational complexity. In this paper, we give an affirmative answer by proposing a very efficient protocol with no additional assumption introduced. The protocol requires only six communication rounds without increasing the computational complexity.