期刊名称:Journal of Theoretical and Applied Information Technology
印刷版ISSN:1992-8645
电子版ISSN:1817-3195
出版年度:2014
卷号:69
期号:2
出版社:Journal of Theoretical and Applied
摘要:This paper aims to provide a unique and enhanced authentication model based on Kerberos environment. With this, it provides a hack-proof authentication system and protects the Kerberos environment from password-guessing attack and replay attack. Traditionally, the banking and financial institutions sends OTP to the client mobile. When it is hacked, the identity can be compromised. Using the proposed authentication model, even when the nonce value or the OTP is hacked, the identity cannot be compromised. This paper insists the need for an additional Session Key and a nonce to be used between the Authentication Server (AS) and Client i.e. Alice. This helps to make the security stronger. Kerberos environment is prone for replay attack and password-guessing attack and hence this security model helps Kerberos environment to prevent such attacks.
