论文信息 - A Simple and Secure Authentication and Key Establishment Protocol

A Simple and Secure Authentication and Key Establishment Protocol

Authentication of communicating entities and confidentiality of transmitted data are two important security properties in most of the applications, when communication media is a public (insecure) channel. One can design an authentication protocol based on password or public key, depending on applications requirement. In this paper, we present a password-based authentication and key establishment protocol. The protocol first authenticates communicating parties and then the communicating parties share a common transient secret key to establish a secure channel for transmitting data between them. The protocol is free from maintaining extra token (e.g., smart card) for users and does not require password/verifier table to validate users. Further, the protocol resists possible threats and provides efficiency for implementing in resource-constrained environments.

Manik Lal Das | V. Lakshmi Narasimhan

[1] Min-Shiang Hwang,et al. A new remote user authentication scheme using smart cards , 2000, IEEE Trans. Consumer Electron..

[2] Ashutosh Saxena,et al. A novel remote user authentication scheme using bilinear pairings , 2006, Comput. Secur..

[3] Leslie Lamport,et al. Password authentication with insecure communication , 1981, CACM.

[4] Jing-Jang Hwang,et al. Improvement on Peyravian-Zunic's Password Authentication Schemes , 2002 .

[5] Nevenko Zunic,et al. Methods for Protecting Password Transmission , 2000, Comput. Secur..

[6] Akihiro Shimizu,et al. A dynamic password authentication method using a one-way function , 1991, Systems and Computers in Japan.

[7] Craig Metz,et al. A One-Time Password System , 1996, RFC.

[8] Craig Metz,et al. A One-Time Password System , 1996, RFC.

[9] Shyi-Tsong Wu,et al. A user friendly remote authentication scheme with smart cards , 2003, Comput. Secur..

[10] Wen-Yuan Liao,et al. A remote password authentication scheme based upon ElGamal's signature scheme , 1994, Comput. Secur..