Title :
Using the HMAC-Based One-Time Password Algorithm for TLS Authentication
Author :
Hamdane, Balkis ; Serhrouchni, Ahmed ; Montfaucon, Adrien ; Guemara, Sihem
Author_Institution :
Sup´´Com Cite Technol. des Commun., Ariana, Tunisia
Abstract :
Transport Layer Security (TLS) constitutes the main protocol used to secure the exchanges in the Internet. Indeed, this protocol assures the server authentication based generally on public key certificates but the client authentication is rarely required and if it is assured, its identity is sent in clear text. In this paper, we propose TLS-HOTP protocol, an extension to TLS to provide client authentication based on pre-shared keys (PSK) using the HMAC-Based One-Time Password (HOTP) algorithm. These pre-shared keys are symmetric keys, but the client´s key is stored in a secure token, ensuring its mobility. The extension also provides client identity protection to ensure the protection of client credentials. In order to analyze the security of TLS-HOTP, we provide a formal validation of the protocols security goal achievement.
Keywords :
Internet; authorisation; computer network security; cryptographic protocols; message authentication; public key cryptography; HMAC-based one-time password algorithm; Internet; TLS authentication; TLS-HOTP protocol; authentication protocol; client authentication; client identity protection; pre-shared keys; public key certificates; transport layer security; Authentication; Protocols; Public key; Radiation detectors; Servers; Synchronization;
Conference_Titel :
Network and Information Systems Security (SAR-SSI), 2011 Conference on
Conference_Location :
La Rochelle
Print_ISBN :
978-1-4577-0735-3
DOI :
10.1109/SAR-SSI.2011.5931396
