Authenticated key exchange protocols resistant to password guessing attacks

IEE Proceedings: Communications

Volumn 145, Issue 5, 1998, Pages 304-308

  Kwon, T ^a   Song, J ^b  

^a Yonsei University   (South Korea)

^b NONE

Author keywords

Key exchange protocols; One time hash function; One time pail; Password guessing attacks

Indexed keywords

COMPUTATIONAL METHODS; DATA COMMUNICATION SYSTEMS; FUNCTIONS; SECURITY OF DATA;

HASH FUNCTION; KEY EXCHANGE PROTOCOL; ONE TIME PAD; PASSWORD GUESSING ATTACKS;

NETWORK PROTOCOLS;

EID: 0032182009     PISSN: 13502425     EISSN: None     Source Type: Journal    
DOI: 10.1049/ip-com:19982282     Document Type: Article

References (16)

1. NEEDHAM, R., and SCHROEDER, M.: 'Using encryption for authentication in larce networks of computers', Commun. ACM, 1978, 21, (12), pp. 993-999
2. MORRIS, R., and THOMPSON, K.: 'Password security: a case history', Commun. ACM, 1979, 22, (11), pp. 594-597
3. FELDMEIER, D., and KARN, P.: 'UNIX password security ten years later'. Proceedings of Crypto'89, 1989, pp. 44-63
4. KLEIN, D.: 'Foiling the cracker: a survey of, and improvements to password security'. Proceedings of 2nd USENIX unix security workshop, 1990, pp. 5-14
5. BELLOVIN, S., and MERRITT, M.: 'Encrypted key exchange: password-based protocols secure against dictionary attacks'. Proceedinss of IEEE symposium on Security and privacy, 1992, pp. 72-84
6. GONG, L., LOMAS, M., NEEDHAM, R., and SALTZER, J.: 'Protecting poorly chosen secrets from guessing attacks', IEEE J. Sel. Areas Commun., 1993, 11, (5), pp. 648-656
7. GONG, L.: 'Optimal authentication protocols resistant to password guessing attacks'. Proceedings of 8th IEEE comp. security foundation workshop, 1995, pp. 24-29
8. KWON, T., KANG, M., and SONG, J.: 'An adaptable and reliable authentication protocol for communication networks'. Proceedings of IEEE INFOCOM 97, Kobe, Japan, 1997, pp. 738745
9. GONG, L.: 'Verifiable-text attacks in cryptographic protocols'. Proceedings of IEEE INFOCOM 90, San Francisco, USA, 1990, pp. 686-693
10. DING, Y., and HOSTER, P.: 'Undetectable on-line password guessing attacks', ACM Operating Syst. Rev. 1995, 29, (4), pp. 77-86
11. MARK, T., LOMAS, A., GONG, L., and SALTZER, J.: 'Reducing risks from poorly chosen keys', ACM Operating Syst. Rev., 1989, 23, (5), pp. 14-18
12. DENNING, D., and SACCO, G.: Timestamps in key distribution protocols', Commun. ACM, 1981, 24, (8), pp. 533-536
13. TSUDIK, G., and VAN HERBEWEGHEN, E.: 'Some remarks on protecting weak keys and poorly-chosen secrets from guessing attacks'. Proceedings of 12th IEEE symposium on Reliable distributed systems, 1995, pp. 136-141
14. DIFFIE, W., and HELLMAN, M.: 'New directions in cryptoeraphy', IEEE Trans., 1976, IT-22, (6), pp. 644-654
15. OTWAY, D., and REES, O.: 'Efficient and timely mutual authentication', ACM Operating Syst. Rev., 1987, 21, (1), pp. 810
16. GONG, L., NEEDHAM, R., and YAHALOM, R.: 'Reasoning about belief in cryptographic protocols'. Proceedings of IEEE symposium on Research in security ami privacy, 1990, pp. 234-248