Title :
Research of authentication mechanism in CHAP
Author_Institution :
Security Inst. of Comput. & Network, Chengdu Univ. of Inf. Technol., Chengdu, China
Abstract :
The method of double-factor authentication is usually embedded in CHAP (Challenge Handshake Authentication Protocol) to enhance the security of the authentication service. The CHAP protocol with double-factor authentication is formally verified from the intruder´s aspect, and some data structures is abstracted from the protocol to build up the framework of reasoning-logic. By the means of adverse deduction, the framework of reasoning-logic is analyzed thoroughly, the flaws of the CHAP protocol is found and the corresponding attacking scenario is given. The result shows that the CHAP protocol with double-factor authentication has some security holes and can´t achieve the security requirement of the design.
Keywords :
data structures; protocols; security of data; CHAP; adverse deduction; authentication mechanism; authentication service; challenge handshake authentication protocol; data structures; double factor authentication method; intruders aspect; logic reasoning; security holes; security requirement; Authentication; Conferences; Cryptography; Internet; Protocols; Universal Serial Bus; authentication; double- factor; formal method; intruder;
Conference_Titel :
Electric Information and Control Engineering (ICEICE), 2011 International Conference on
Conference_Location :
Wuhan
Print_ISBN :
978-1-4244-8036-4
DOI :
10.1109/ICEICE.2011.5777371
