Encrypted key exchange: password-based protocols secure against dictionary attacks
Steven M. Bellovin,Michael Merritt +1 more
- pp 72-84
Reads0
Chats0
TLDR
A combination of asymmetric (public-key) and symmetric (secret- key) cryptography that allow two parties sharing a common password to exchange confidential and authenticated information over an insecure network is introduced.Abstract:
Classic cryptographic protocols based on user-chosen keys allow an attacker to mount password-guessing attacks. A combination of asymmetric (public-key) and symmetric (secret-key) cryptography that allow two parties sharing a common password to exchange confidential and authenticated information over an insecure network is introduced. In particular, a protocol relying on the counter-intuitive motion of using a secret key to encrypt a public key is presented. Such protocols are secure against active attacks, and have the property that the password is protected against offline dictionary attacks. >read more
Citations
More filters
Journal ArticleDOI
Verifier-based anonymous password-authenticated key exchange protocol in the standard model
TL;DR: A verifier-based anonymous password-authenticated key exchange protocol, in which the server holds a verifier corresponding to each client instead of the clear password, which is proved secure in the standard model.
Journal ArticleDOI
A Non-Exchanged Password Scheme for Password-Based Authentication in Client-Server Systems
TL;DR: This research presents a non-exchanged password scheme that constructs a Digital Signature that is derived from the user password that is exchanged instead of the password itself for the purpose of authentication.
Journal ArticleDOI
Evaluating Three Party Authentication and Key Agreement Protocols Using IP Multimedia Server---Client Systems
TL;DR: A novel three party authentication and key agreement protocol based on computational Diffie–Hellman which not only fulfills all the security properties of AKA, but also provides the resiliency to the most of the potential attacks.
Proceedings ArticleDOI
Anonymous DoS-Resistant Access Control Protocol Using Passwords for Wireless Networks
TL;DR: A different access control protocol using passwords for wireless networks is proposed, and the client can anonymously authenticate himself to the server with a human-memorable password, while the server is free of DoS attacks.
Book ChapterDOI
A scalable and secure cryptographic service
Shouhuai Xu,Ravi Sandhu +1 more
TL;DR: A scalable and secure cryptographic service that can be adopted to support large-scale networked systems, which may require strong authentication from a large population of users, which incorporates a 3-factor authentication mechanism.
References
More filters
Journal ArticleDOI
New Directions in Cryptography
TL;DR: This paper suggests ways to solve currently open problems in cryptography, and discusses how the theories of communication and computation are beginning to provide the tools to solve cryptographic problems of long standing.
Journal ArticleDOI
A method for obtaining digital signatures and public-key cryptosystems
TL;DR: An encryption method is presented with the novel property that publicly revealing an encryption key does not thereby reveal the corresponding decryption key.
Journal ArticleDOI
A public key cryptosystem and a signature scheme based on discrete logarithms
TL;DR: A new signature scheme is proposed, together with an implementation of the Diffie-Hellman key distribution scheme that achieves a public key cryptosystem that relies on the difficulty of computing discrete logarithms over finite fields.
Book ChapterDOI
A Public Key Cryptosystem and a Signature Scheme Based on Discrete Logarithms
TL;DR: In this article, a new signature scheme is proposed together with an implementation of the Diffie-Hellman key distribution scheme that achieves a public key cryptosystem and the security of both systems relies on the difficulty of computing discrete logarithms over finite fields.
Book
Cryptography and data security
TL;DR: The goal of this book is to introduce the mathematical principles of data security and to show how these principles apply to operating systems, database systems, and computer networks.