Secure authentication protocols resistant to guessing attacks

Jia Ning Luo; Shiuhpyng Shieh; Ji Chiang Shen

doi:10.6688/JISE.2006.22.5.9

Secure authentication protocols resistant to guessing attacks

Jia Ning Luo^*, Shiuhpyng Shieh, Ji Chiang Shen

^*Corresponding author for this work

Department of Computer Science

Research output: Contribution to journal › Article › peer-review

3 Scopus citations

Abstract

Users are normally authenticated via their passwords in computer systems. Since people tend to choose passwords that can be easily remembered, the systems are under the threat of guessing attacks. Many authentication and key distribution protocols have been proposed to protect user passwords from guessing attacks. However, these protocols either are limited to some specific environments or incur high computation and communication costs. In the paper, we first specify five common forms of guessing attacks, which are used to determine whether a protocol is vulnerable to those attacks. Based on these common forms, some guidelines are provided for developing secure protocols that can be used in both symmetric and asymmetric cryptosystems to defend against guessing attacks. Finally, we enhance the well-known authentication system Kerberos and propose two authentication and key distribution protocols, which are both resistant to guessing attacks.

Original language	English
Pages (from-to)	1125-1143
Number of pages	19
Journal	Journal of Information Science and Engineering
Volume	22
Issue number	5
DOIs	https://doi.org/10.6688/JISE.2006.22.5.9
State	Published - Sep 2006

Keywords

Authentication
Cryptography
Guessing attack
Network security
Protocol

Access to Document

10.6688/JISE.2006.22.5.9

Cite this

@article{bec2fcbb26414e45b26ff827b676d83f,

title = "Secure authentication protocols resistant to guessing attacks",

abstract = "Users are normally authenticated via their passwords in computer systems. Since people tend to choose passwords that can be easily remembered, the systems are under the threat of guessing attacks. Many authentication and key distribution protocols have been proposed to protect user passwords from guessing attacks. However, these protocols either are limited to some specific environments or incur high computation and communication costs. In the paper, we first specify five common forms of guessing attacks, which are used to determine whether a protocol is vulnerable to those attacks. Based on these common forms, some guidelines are provided for developing secure protocols that can be used in both symmetric and asymmetric cryptosystems to defend against guessing attacks. Finally, we enhance the well-known authentication system Kerberos and propose two authentication and key distribution protocols, which are both resistant to guessing attacks.",

keywords = "Authentication, Cryptography, Guessing attack, Network security, Protocol",

author = "Luo, {Jia Ning} and Shiuhpyng Shieh and Shen, {Ji Chiang}",

year = "2006",

month = sep,

doi = "10.6688/JISE.2006.22.5.9",

language = "English",

volume = "22",

pages = "1125--1143",

journal = "Journal of Information Science and Engineering",

issn = "1016-2364",

publisher = "Institute of Information Science",

number = "5",

}

TY - JOUR

T1 - Secure authentication protocols resistant to guessing attacks

AU - Luo, Jia Ning

AU - Shieh, Shiuhpyng

AU - Shen, Ji Chiang

PY - 2006/9

Y1 - 2006/9

N2 - Users are normally authenticated via their passwords in computer systems. Since people tend to choose passwords that can be easily remembered, the systems are under the threat of guessing attacks. Many authentication and key distribution protocols have been proposed to protect user passwords from guessing attacks. However, these protocols either are limited to some specific environments or incur high computation and communication costs. In the paper, we first specify five common forms of guessing attacks, which are used to determine whether a protocol is vulnerable to those attacks. Based on these common forms, some guidelines are provided for developing secure protocols that can be used in both symmetric and asymmetric cryptosystems to defend against guessing attacks. Finally, we enhance the well-known authentication system Kerberos and propose two authentication and key distribution protocols, which are both resistant to guessing attacks.

AB - Users are normally authenticated via their passwords in computer systems. Since people tend to choose passwords that can be easily remembered, the systems are under the threat of guessing attacks. Many authentication and key distribution protocols have been proposed to protect user passwords from guessing attacks. However, these protocols either are limited to some specific environments or incur high computation and communication costs. In the paper, we first specify five common forms of guessing attacks, which are used to determine whether a protocol is vulnerable to those attacks. Based on these common forms, some guidelines are provided for developing secure protocols that can be used in both symmetric and asymmetric cryptosystems to defend against guessing attacks. Finally, we enhance the well-known authentication system Kerberos and propose two authentication and key distribution protocols, which are both resistant to guessing attacks.

KW - Authentication

KW - Cryptography

KW - Guessing attack

KW - Network security

KW - Protocol

UR - http://www.scopus.com/inward/record.url?scp=33749576354&partnerID=8YFLogxK

U2 - 10.6688/JISE.2006.22.5.9

DO - 10.6688/JISE.2006.22.5.9

M3 - Article

AN - SCOPUS:33749576354

SN - 1016-2364

VL - 22

SP - 1125

EP - 1143

JO - Journal of Information Science and Engineering

JF - Journal of Information Science and Engineering

IS - 5

ER -

Secure authentication protocols resistant to guessing attacks

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this