Interactive Password Schemes

Files
Date
2004-04-27
DOI
Authors
Itkis, Gene
Maiss, Arwa
Version
URI
https://hdl.handle.net/2144/3776
OA Version
Citation
Abstract
Usual password schemes suffer from the flaw that they are easy to steal. An attacker who has correctly observed a login session (by peeping, wiretapping and/or by launching a "man-in-the-middle" attack, etc.) can easily impersonate the corresponding user. Available protection techniques require computations on hundreds digit integers that are so complex that they require special software and/or hardware. This project tries to combine the simplicity of the conventional password schemes with a protection technique that results in a different password being typed each session, but only requires simple computation performed in the user's head.
Description
Only the abstract is available for this technical report.
License
Collections
CAS: Computer Science: Technical Reports