Weaknesses and Improvement of Secure Hash-Based Strong-Password Authentication Protocol *

Artigo

Weaknesses and Improvement of Secure Hash-Based Strong-Password Authentication Protocol *

2010; Institute of Information Science; Volume: 26; Issue: 5 Linguagem: Inglês

ISSN

1016-2364

Autores

Hanjae Jeong, Dongho Won, Seungjoo Kim,

Tópico(s)

Cryptographic Implementations and Security

Resumo

In 2008, Kim-Koc proposed a secure hash-based strong-password authentication protocol using one-time public key cryptography. He claimed that the protocol was secure against guessing, stolen-verifier, replay, denial-of-service, and impersonation attacks. However, we show that the protocol is vulnerable to impersonation, guessing, and stolen-verifier attacks. We propose improvements to increase the security level of the protocol.

Ver no editor

Entrar

Lembrar minha senha

Receber meu e-mail de confirmação

Weaknesses and Improvement of Secure Hash-Based Strong-Password Authentication Protocol *