期刊名称:International Journal of Advanced Research in Computer Engineering & Technology (IJARCET)
印刷版ISSN:2278-1323
出版年度:2014
卷号:3
期号:1
页码:206-209
出版社:Shri Pannalal Research Institute of Technolgy
摘要:Two server secret word-based authentication protocols(Two-Server PAKE), where two servers co- operate to authenticate a client on the basis of secret word only and if one server is compromised due to denial of service attack (DDOS), the attacker still cannot make believe to be the client with information from the compromised server. New research advances in secret word based authentication a n d follow two models. The initial model, called Public key infrastructure suggests, that the client having the s erver's public key in additional to share a secret word to the server. In this setup, the client has to send the secret word only to the server by public key encryption (PKE). The next model is called secret word- only model which follows encrypted key exchange (EKE) protocols, where the password is used as a secret key to encrypt random numbers for key exchange purpose. A secret word-only authenticat ion protocol which is bot h convenient and provably secure identify with cryptographic assumption. Our protocol is symmetric an d, can run in similar to establish secret session keys between the client and peer servers, respectively. In case any one of the two peer servers shut s down due to the Distributed Denial-of service attack (DDOS), other server can proceed to provide ceremony to valid clients. In case of si milar computation and reliable service, a symmetrical protocol is superior to an asymmetrical protocol.
关键词:Two server PAKE; DDOS; PKE; EKE; ; public key infrastructure; Diffie-Hellman; ElGamal ; encryption; symmetrical protocol
