Introducing smartcards to remote authenticate passwords using public key encryption

Author

Badra, M. ; Urien, P.

Author_Institution

Ecole Nat. Superieure des Telecommun., Paris, France

fYear

2004

fDate

26-27 Apr 2004

Firstpage

123

Lastpage

126

Abstract

Password authentication is one of the most popular local and remote authentication methods. This can be done by sharing a password between peers. At the operating system server, the passwords file must be protected against any attack. Actually, almost all operating systems protect this file using one way functions like MD5 or symmetric algorithms such as DES. The Unix password protection scheme is an example of a security mechanism making use of one way functions. The problem here is that a directed dictionary attack can almost always succeed in breaking the password using a simple work station. We propose a new approach based on asymmetric encryption algorithms and the smartcards technology to allow passwords file protection and to prohibit middlemen from having the password during its transit over the connection.

Keywords

message authentication; public key cryptography; smart cards; telecommunication security; DES; Unix password protection scheme; asymmetric encryption algorithms; directed dictionary attack; one way functions; operating system server; password authentication; passwords file protection; public key encryption; security mechanism; smart cards; smartcards; symmetric algorithms; Access protocols; Authentication; Computer crime; Dictionaries; File servers; Network servers; Operating systems; Protection; Public key; Public key cryptography;

fLanguage

English

Publisher

ieee

Conference_Titel

Advances in Wired and Wireless Communication, 2004 IEEE/Sarnoff Symposium on

Print_ISBN

0-7803-8219-6

Type

conf

DOI

10.1109/SARNOF.2004.1302856

Filename

1302856