A One-Time Password Authentication Method for Low Spec Machines and on Internet Protocols(Internet)
スポンサーリンク
概要
- 論文の詳細を見る
Applications for transforming money or personal information are increasingly common on the Internet and in mobile communications. These applications require user authentication for confirming legal users. One-time password authentication methods change the verifier every time by sending the present verifier along with the next verifier. However, such methods risk attacks because those protocols use two verifiers every session. The SAS (Simple And Secure password authentication protocol) is a one-time password authentication method that the method uses a hash function five times, but it requires high overhead on low spec machines. In this paper, we propose a new method, SAS-2, which reduces overhead of hash function adaptation by 40%. This method has a mutual authentication phase, which maintains synchronous data communications in its authentication procedure. Moreover, SAS-2 can be applied to key-free systems.
- 社団法人電子情報通信学会の論文
- 2004-06-01
著者
-
Tsuji Takasuke
Course Of Information Systems Engineering Department Of Engineering Graduate School Of Engineering K
-
Tsuji Takasuke
Course Of Information Systems Engineering Department Of Engineering Graduate School Of Engineering K
-
Shimizu Akihiro
Course Of Information Systems Engineering Department Of Engineering Graduate School Of Engineering K
-
Shimizu Akihiro
Course Of Information Systems Engineering Department Of Engineering Graduate School Of Engineering K
関連論文
- An Impersonation Attack on One-Time Password Authentication Protocol OSPA(Fundamental Theories)
- Cryptanalysis on One-Time Password Authentication Schemes Using Counter Value(Internet)
- One-Time Password Authentication Protocol against Theft Attacks(Security)(Internet Technology IV)
- A One-Time Password Authentication Method for Low Spec Machines and on Internet Protocols(Internet)