Password Protected Smart Card and Memory Stick Authentication against Off-Line Dictionary Attacks

Abstract : We study the security requirements for remote authentication with password protected smart card. In recent years, several protocols for password-based authenticated key exchange have been proposed. These protocols are used for the protection of password based authentication between a client and a remote server. In this paper, we will focus on the password based authentication between a smart card owner and smart card via an untrusted card reader. In a typical scenario, a smart card owner inserts the smart card into an untrusted card reader and input the password via the card reader in order for the smart card to carry out the process of authentication with a remote server. In this case, we want to guarantee that the card reader will not be able to impersonate the card owner in future without the smart card itself. Furthermore, the smart card could be stolen. If this happens, we want the assurance that an adversary could not use the smart card to impersonate the card owner even though the sample space of passwords may be small enough to be enumerated by an off-line adversary.
Type de document :
Communication dans un congrès
Dimitris Gritzalis; Steven Furnell; Marianthi Theoharidou. 27th Information Security and Privacy Conference (SEC), Jun 2012, Heraklion, Crete, Greece. Springer, IFIP Advances in Information and Communication Technology, AICT-376, pp.489-500, 2012, Information Security and Privacy Research. 〈10.1007/978-3-642-30436-1_40〉
Liste complète des métadonnées

Littérature citée [15 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01518248
Contributeur : Hal Ifip <>
Soumis le : jeudi 4 mai 2017 - 13:45:42
Dernière modification le : jeudi 4 mai 2017 - 14:53:52
Document(s) archivé(s) le : samedi 5 août 2017 - 13:16:16

Fichier

978-3-642-30436-1_40_Chapter.p...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Yongge Wang. Password Protected Smart Card and Memory Stick Authentication against Off-Line Dictionary Attacks. Dimitris Gritzalis; Steven Furnell; Marianthi Theoharidou. 27th Information Security and Privacy Conference (SEC), Jun 2012, Heraklion, Crete, Greece. Springer, IFIP Advances in Information and Communication Technology, AICT-376, pp.489-500, 2012, Information Security and Privacy Research. 〈10.1007/978-3-642-30436-1_40〉. 〈hal-01518248〉

Partager

Métriques

Consultations de la notice

76

Téléchargements de fichiers

18