Title :
Research and realization of authentication technique based on OTP and Kerberos
Author :
Xiao-rong, Cheng ; Qi-yuan, Feng ; Chao, Dong ; Ming-quan, Zhang
Author_Institution :
Sch. of Comput. Sci. & Technol., North China Electr. Power Univ., Hebei
Abstract :
With the development of computer network, its security problem has been urgent at present. Authentication is an important part in the network security. It can prevent illegal user from accessing network. Traditional authentication method is password. But it cannot resist dictionary and playback attack. This paper makes a profound study on the principle of one-time password. This mode doesn´t need a third party and it is a practical and secure solution. But there are many deficiencies in OTP system. The fatal one is that it only supports the server to authenticate the user, but does not support the user to authenticate the server. So it cannot prevent a feigned server from deceiving the user. A new authentication method which integrates the advantages of the Kerberos protocol and OTP system is presented in this paper. OTP/Kerberos makes the user and the server to authenticate each other and it can prevent crasher from small number attack and playback attack. In the end, OTP/Kerberos system is implemented and applied in a MIS of national security bureau in one city. Its feasibility and security are verified
Keywords :
client-server systems; management information systems; message authentication; protocols; telecommunication security; Kerberos protocol; MIS; authentication; computer network security; national security bureau; one-time password; Authentication; Chaos; Computer science; Dictionaries; Information security; Internet; Law; National security; Protocols; Resists;
Conference_Titel :
High-Performance Computing in Asia-Pacific Region, 2005. Proceedings. Eighth International Conference on
Conference_Location :
Beijing
Print_ISBN :
0-7695-2486-9
DOI :
10.1109/HPCASIA.2005.86
