Author_Institution :
Sch. of Math. & Comput. Sci., Jianghan Univ., Wuhan, China
Abstract :
This paper describes a new type of authentication protocol and a system based on the protocol. Input transformation module is an universal service program installed in the client´s. The module putout distinct output password or account for different website according to the same original user password or account and the secret website´s identification code, And then, by using non-symmetric encryption, so only the site can read the output password or account. An user only needs to remember one account and password, and then, he can login different services securely with a totally different account and password. With this method, users can avoid the current password security risks existing nowadays, such as accounts or passwords are cheated or taken by Trojans or Trojan Site, or robbed in the transmission process, or stolen by a bad administrator. Compared with the Kerberos traditional centralized authentication service, it is separate and needs few requirements to servers, so it is much easier to implement.
Keywords :
authorisation; client-server systems; cryptographic protocols; user interfaces; utility programs; Website; authentication protocol; identification code; input transformation module; nonsymmetric encryption; service program; user password; Authentication; Databases; Encryption; Protocols; Servers; Trojan horses; Identity authentication; kerberos; network security; password security;
