Title :
Secure Password Authentication for Distributed Computing
Author :
Jung, Seung Wook ; Jung, Souhwan
Author_Institution :
Commun. Network Security Lab., Soongsil Univ., Seoul
Abstract :
This paper describes secure password-based authentication involving a trusted third party, while the previous secure password authentication schemes focused on authentication involving two parties who shares the password. Kerberos is a well-known password-based authentication protocol involving a trusted third party. However, Kerberos is weak against the dictionary attack and suffers from a single point of failure. Additionally, Kerberos cannot provide a forward secrecy, which protects past sessions and further compromise, when a password is revealed. Our password authentication schemes provides single sign on like Kerberos and is secure against on/off-line dictionary attack. Moreover, the schemes provide a forward secrecy, and reduces the damage of the single point of failure
Keywords :
authorisation; distributed processing; message authentication; distributed computing; forward secrecy; secure password authentication; single sign on; trusted third party; Access protocols; Authentication; Communication networks; Cryptography; Dictionaries; Distributed computing; File servers; Information security; Personal digital assistants; Protection;
Conference_Titel :
Computational Intelligence and Security, 2006 International Conference on
Conference_Location :
Guangzhou
Print_ISBN :
1-4244-0605-6
Electronic_ISBN :
1-4244-0605-6
DOI :
10.1109/ICCIAS.2006.295278
