HPAKE : Password authentication secure against cross-site user impersonation
| Data(s) |
2009
|
|---|---|
| Resumo |
We propose a new kind of asymmetric mutual authentication from passwords with stronger privacy against malicious servers, lest they be tempted to engage in “cross-site user impersonation” to each other. It enables a person to authenticate (with) arbitrarily many independent servers, over adversarial channels, using a memorable and reusable single short password. Beside the usual PAKE security guarantees, our framework goes to lengths to secure the password against brute-force cracking from privileged server information. |
| Identificador | |
| Publicador |
Springer Berlin Heidelberg |
| Relação |
http://link.springer.com/chapter/10.1007%2F978-3-642-10433-6_19 DOI:10.1007/978-3-642-10433-6_19 Boyen, Xavier (2009) HPAKE : Password authentication secure against cross-site user impersonation. Lecture Notes in Computer Science, 5888, pp. 279-298. |
| Direitos |
Copyright 2009 Springer-Verlag Berlin Heidelberg Author's Pre-print: author can archive pre-print (ie pre-refereeing) Author's Post-print: author can archive post-print (ie final draft post-refereeing) Publisher's Version/PDF: author cannot archive publisher's version/PDF |
| Fonte |
School of Electrical Engineering & Computer Science; Science & Engineering Faculty |
| Palavras-Chave | #Data Encryption #Systems and Data Security |
| Tipo |
Journal Article |
