| 題名: | A Common Weakness of Password Authentication Schemes Requiring Synchronous Update of Stored Data |
| 作者: | Ku, Wei-Chi Tsai, Hao-Chuan Tsaur, Maw-Jinn |
| 關鍵字: | password authentication data synchronization smart card denial-of-service attack |
| 期刊名/會議名稱: | 2004 ICS會議 |
| 摘要: | To resist off-line password guessing attacks without using public-key techniques, many newer hash-based one-time password authentication schemes additionally employ a smart card to generate a one-time high-entropy passcode from the userchosen fixed password. Among these schemes, some require synchronous update of stored data in the user’s smart card and the server. Herein, we show that such schemes tend to suffer from denial-ofservice attacks by using three illustrative examples. |
| 日期: | 2006-10-16T05:38:00Z |
| 分類: | 2004年 ICS 國際計算機會議 |
文件中的檔案:
| 檔案 | 描述 | 大小 | 格式 | |
|---|---|---|---|---|
| ce07ics002004000145.pdf | 546.12 kB | Adobe PDF | 檢視/開啟 |
在 DSpace 系統中的文件,除了特別指名其著作權條款之外,均受到著作權保護,並且保留所有的權利。