Otway–Rees protocol

About: Otway–Rees protocol is a research topic. Over the lifetime, 1975 publications have been published within this topic receiving 40569 citations.

On the Security and Vulnerability of PING

Abstract: We present a formal specification of the PING protocol, and use three concepts of convergence theory, namely closure, convergence, and protection, to show that this protocol is secure against weak adversaries (and insecure against strong ones) We then argue that despite the security of PING against weak adversaries, the natural vulnerability of this protocol (or of any other protocol for that matter) can be exploited by a weak adversary to launch a denial of service attack against any computer that hosts the protocol Finally, we discuss three mechanisms, namely ingress filtering, hop integrity, and soft firewalls that can be used to prevent denial of service attacks in the Internet

Study of network authentication based on RADIUS protocol

Abstract: By analyzing the principle of remote authentication dial in user service (RADIUS) protocol and the applied security algorithm, an improved RADIUS protocol was proposed to enhance the security performance of networks.Based on the improved protocol,AAA (authentication,authority and account) architecture was set up for the Internet service providers.The AAA architecture for wireless gateway does not increase the complexity of the communication systems, and is simple and easy to implement.

Designing of authentication protocol for multi-level security virtual desktops

Abstract: In order to address the problems of cross domain access and dynamic authentication in the multi-level security virtual desktops, this paper proposes a authentication protocol based on multi-level security virtual desktops Firstly, the user behavior authentication mechanism is introduced into the protocol It could achieve the legitimacy of the dynamic authentication of user behavior and improve the flexibility and security of protocol Secondly, the protocol uses digital signature based on elliptic curve cryptography Symmetric encryption algorithm is used to reduce the computational complexity of it The large integer inverse operation is eliminated in the signature equation, which guarantees the safety grade of the signature while improves its efficiency Finally, the security of authentication protocol is proved by BAN logic

An enhanced of Simple Three-Party Key Exchange Protocol

Abstract: Three-party password authenticated key exchange (3PAKE) protocol is capable of reducing the number of required keys stored by users in a conference. In 2007, Lu and Cao proposed a simple three-party password authenticated key exchange (S-3PAKE) protocol for assisting users to complete business negotiations and agreements during a communication process without requiring a public server key, and the S-3PAKE protocol can resist all known attacks. However, in 2008, Cuo et al. pointed out the protocol proposed by Lu et al. still cannot resist man-in-the-middle attacks and online dictionary attacks thus further proposed an improved solution as follows. Two parties execute the 2-PAKE protocol to obtain an agreement key first, so that when they execute the 3PAKE protocol, they can authenticate the real identity with each other. An effective three-party password authenticated key exchange (3PAKE) protocol was proposed for authenticating the real identity of both parties without requiring an execution of the 2-PAKE protocol to obtain the agreement key first, but simply adding the real identity of the opposite party in the communication