TY - JOUR
T1 - Efficient and secure password-based authentication protocols against guessing attacks
AU - Kwon, Taekyoung
AU - Song, Jooseok
PY - 1998/7/1
Y1 - 1998/7/1
N2 - We propose authentication and key exchange protocols which are both efficient and secure against password guessing attacks. Conventional authentication protocols have assumed that a strong secret should be shared between communicating participants, in the light of a threat of guessing attacks. A cryptographically long secret would be favored for security reasons, but it is not suitable for users to remember. Recent password-based protocols to defeat guessing attacks are more expensive than previous ones, in terms of the computation and communication costs. Using a one-time pad and a strong one-way hash function, we promote both security and efficiency. Thereby, we also verify our protocol formally.
AB - We propose authentication and key exchange protocols which are both efficient and secure against password guessing attacks. Conventional authentication protocols have assumed that a strong secret should be shared between communicating participants, in the light of a threat of guessing attacks. A cryptographically long secret would be favored for security reasons, but it is not suitable for users to remember. Recent password-based protocols to defeat guessing attacks are more expensive than previous ones, in terms of the computation and communication costs. Using a one-time pad and a strong one-way hash function, we promote both security and efficiency. Thereby, we also verify our protocol formally.
UR - http://www.scopus.com/inward/record.url?scp=0032115203&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=0032115203&partnerID=8YFLogxK
U2 - 10.1016/s0140-3664(98)00153-4
DO - 10.1016/s0140-3664(98)00153-4
M3 - Article
AN - SCOPUS:0032115203
SN - 0140-3664
VL - 21
SP - 853
EP - 861
JO - Computer Communications
JF - Computer Communications
IS - 9
ER -