论文信息 - OPA: a one-time password system

OPA: a one-time password system

Most network applications authenticate users with an account name/password system. Systems using reusable passwords are susceptible to attacks based on the theft of the password. One-time password systems attempt to alleviate the problem of "sniffed" passwords by making the replay of a password useless. However, one-time password systems require the use of a generator that creates the one-time password. The added inconvenience (and in some cases cost) of the generator has limited the wide spread application of one-time password systems. OPA (One-time Password Algorithms) implements a system that allows users to protect their accounts with a one-time password that adds minimal additional complexity over a simple reusable password system. OPA does not offer the degree of security provided by most other one-time password systems but can provide additional security when compared to reusable passwords.

J. Archer Harris

[1] Theodore Y. Ts'o,et al. Kerberos: an authentication service for computer networks , 1994, IEEE Communications Magazine.

[2] David R. Smith,et al. Hierarchical multiprocessor organizations , 1977, ISCA '77.

[3] J. Archer Harris,et al. Performance of a XENIX distributed file system , 1988, Proceedings [1988] 13th Conference on Local Computer Networks.

[4] J. Archer Harris. A microprogramming project for a course in computer systems , 1988, SGCS.

[5] Vipin Samar,et al. Unified login with pluggable authentication modules (PAM) , 1996, CCS '96.

[6] Neil Haller,et al. The S/KEY One-Time Password System , 1995, RFC.

[7] J. Archer Harris,et al. The Design and Implementation of a Network Account Management System , 1996, LISA.

[8] Craig Metz,et al. A One-Time Password System , 1996, RFC.

[9] David R. Smith,et al. Simulation experiments of a tree organized multicomputer , 1979, ISCA '79.