会议论文详细信息
  1. 返回上一页
2018 2nd annual International Conference on Cloud Technology and Communication Engineering
The Weaknesses of the Virtual Password Authentication Protocol with Cookie
计算机科学;无线电电子学
Pan, Hsieh-Tsen^1 ; Wu, Chia-Chun^2 ; Yang, Cheng-Ying^3 ; Hwang, Min-Shiang^1,4
Department of Computer Science and Information Engineering, Asia University, Taichung
41354, Taiwan^1
Department of Industrial Engineering and Management, National Quemoy University, Taiwan^2
Department of Computer Science, University of Taipei, Taipei, Taiwan^3
Department of Medical Research, China Medical University Hospital, China Medical University, Taichung
40402, Taiwan^4
关键词: Brute-force attack;    Eavesdropping attacks;    Man in the middle attacks;    Off-line dictionary attacks;    Online dictionary attacks;    Password attacks;    Password authentication protocols;    Password-based authentication;   
Others  :  https://iopscience.iop.org/article/10.1088/1757-899X/466/1/012009/pdf
DOI  :  10.1088/1757-899X/466/1/012009
学科分类:计算机科学(综合)
来源: IOP
PDF
【 摘 要 】

Password-based authentication protocols are susceptible to various attacks. Recently, Sood, Sarje, and Singh proposed an inverse cookie-based virtual password authentication protocol. Their protocol is practical and easy to implement. They claim that their scheme is secure to against various attacks, include online dictionary attack, offline dictionary attack, eavesdropping attack, denial of service attack, phishing attack, pharming attack, man-in-the-middle attack, replay attack, leak of verifier attack, message modification or insertion attack, and brute force attack. However, we find that some weaknesses of Sood et al.'s scheme. In this article, we will show that Sood et al.'s scheme is vulnerable to the on-line guessing password attack and the denial of service attack.

【 预 览 】
附件列表
Files Size Format View
The Weaknesses of the Virtual Password Authentication Protocol with Cookie 131KB PDF download
  文献评价指标  
  下载次数:8次 浏览次数:17次
   
推荐资源列表
关于我们|团队介绍|帮助中心|联系我们

Copyright © 2016 中国科学院文献情报中心

京公网安备340104078870146号  878987797  028-85220240

OAinOne平台基于对开放资源的发现、遴选和评价方式,发现、获取、集成9类优质的开放科技资源,包括开放期刊、开放会议论文、开放课件、科技政策、开放学位论文、开放图书、开放科技报告、科研项目、开放科学数据。同时,为实现开放知识资源普遍服务、个性化服务、精准服务,基于OAinONE集成的丰富开放资源,开发建设领域开放知识资源服务定制工具(OAtoYOU)、开放资源评价评估体系(OAEvaluation),建设集成OAinONE资源及其他第三方资源的OA Hub,及其面向我院分布式大数据知识资源系统及其他第三方的开放接口服务,并打造特色专题数据库产品建设,包括科技政策集成及趋势平台、开放课程大讲堂等。此外,OAinOne构建开放知识资源建设的可持续发展机制,支持我院研究所特色馆藏资源、自建资源、古籍资源等在OAinONE平台上的集成、开放、共享。