Title :
A unidirectional one-time password authentication scheme without counter desynchronization
Author :
Liao, Shuren ; Zhang, Qiuyan ; Chen, Chao ; Dai, Yiqi
Author_Institution :
Dept. of Comput. Sci. & Technol., Tsinghua Univ., Beijing, China
Abstract :
As a primary mean of authentication, static password based authentication methods suffer from high risk in current insecure network environment. The one-time password (OTP) authentication scheme is proposed to efficiently resist the replay attack and the guessing attack. However, current one-time password schemes bring new problems. The OTP schemes of challenge-response are hard to integrate into most of the existing authentication infrastructures, while others suffer the counter desynchronization problem, which results in failed authentication of a legitimate user. In this paper we propose a novel OTP scheme. The new scheme preserves security property of current schemes, and is free from counter desynchronization. Meanwhile, the scheme can be easily deployed in the current authentication system.
Keywords :
security of data; authentication infrastructures; guessing attack resistance; replay attack resistance; unidirectional one-time password authentication scheme; Authentication; Communication system control; Computer network management; Computer networks; Counting circuits; Dictionaries; Environmental management; Internet; Risk management; Security; authentication; counter desynchronization; one-time password;
Conference_Titel :
Computing, Communication, Control, and Management, 2009. CCCM 2009. ISECS International Colloquium on
Conference_Location :
Sanya
Print_ISBN :
978-1-4244-4247-8
DOI :
10.1109/CCCM.2009.5270426
