An Authentication Protocol Fusing Users and Servers Data
This paper describes a new type of authentication protocol and a system based on the protocol. Input transformation module is an universal service program installed in the clients. The module putout distinct output password or account for different website according to the same original user password or account and the secret websites identification code, And then,by using nonsymmetric encryption, so only the site can read the output password or account. An user only needs to remember one account and password, and then,he can login different services securely with a totally different account and password. With this method, users can avoid the current password security risks existing nowadays, such as accounts or passwords are cheated or taken by Trojans or Trojan Site, or robbed in the transmission process, or stolen by a bad administrator.Compared with the Kerberos traditional centralized authentication service,it is separate and needs few requirements to servers,so it is much easier to implement.
Identity authentication password security network security kerberos
Cheng Yuanbin
School of Mathematics & Computer Science Jianghan University Wuhan ,China
国际会议
香港
英文
484-486
2010-08-12(万方平台首次上网日期,不代表论文的发表时间)