A New Architecture for User Authentication and Key Exchange Using Password for Federated Enterprises

The rapid rise of federated enterprises entails a new way of trust management by the fact that an enterprise can account for partial trust of its affiliating organizations. On the other hand, password has historically been used as a main means for user authentication because of operational simplicit...

Full description

Saved in:
Bibliographic Details
Main Authors: YANG, Yanjiang, BAO, Feng, Deng, Robert H.
Format: text
Language:English
Published: Institutional Knowledge at Singapore Management University 2005
Subjects:
Online Access:https://ink.library.smu.edu.sg/sis_research/552
https://ink.library.smu.edu.sg/context/sis_research/article/1551/viewcontent/Yang2005_Chapter_ANewArchitectureForUserAuthent.pdf
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Singapore Management University
Language: English
id sg-smu-ink.sis_research-1551
record_format dspace
spelling sg-smu-ink.sis_research-15512019-01-11T04:13:27Z A New Architecture for User Authentication and Key Exchange Using Password for Federated Enterprises YANG, Yanjiang BAO, Feng Deng, Robert H. The rapid rise of federated enterprises entails a new way of trust management by the fact that an enterprise can account for partial trust of its affiliating organizations. On the other hand, password has historically been used as a main means for user authentication because of operational simplicity. We are thus motivated to explore the use of short password for user authentication and key exchange in the context of federated enterprises. Exploiting the special structure of a federated enterprise, our proposed new architecture comprises an external server managed by each affiliating organization and a central server managed by the enterprise headquarter. We are concerned with the development of an efficient authentication and key exchange protocol using password, built over the new architecture. The architecture together with the protocol well addresses off-line dictionary attacks initiated at the server side, a problem rarely considered in prior effort. 2005-05-01T07:00:00Z text application/pdf https://ink.library.smu.edu.sg/sis_research/552 info:doi/10.1007/0-387-25660-1_7 https://ink.library.smu.edu.sg/context/sis_research/article/1551/viewcontent/Yang2005_Chapter_ANewArchitectureForUserAuthent.pdf http://creativecommons.org/licenses/by-nc-nd/4.0/ Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University federated enterprise password authentication dictionary attack key exchange public key cryptosystem Information Security
institution Singapore Management University
building SMU Libraries
continent Asia
country Singapore
Singapore
content_provider SMU Libraries
collection InK@SMU
language English
topic federated enterprise password authentication
dictionary attack
key exchange
public key cryptosystem
Information Security
spellingShingle federated enterprise password authentication
dictionary attack
key exchange
public key cryptosystem
Information Security
YANG, Yanjiang
BAO, Feng
Deng, Robert H.
A New Architecture for User Authentication and Key Exchange Using Password for Federated Enterprises
description The rapid rise of federated enterprises entails a new way of trust management by the fact that an enterprise can account for partial trust of its affiliating organizations. On the other hand, password has historically been used as a main means for user authentication because of operational simplicity. We are thus motivated to explore the use of short password for user authentication and key exchange in the context of federated enterprises. Exploiting the special structure of a federated enterprise, our proposed new architecture comprises an external server managed by each affiliating organization and a central server managed by the enterprise headquarter. We are concerned with the development of an efficient authentication and key exchange protocol using password, built over the new architecture. The architecture together with the protocol well addresses off-line dictionary attacks initiated at the server side, a problem rarely considered in prior effort.
format text
author YANG, Yanjiang
BAO, Feng
Deng, Robert H.
author_facet YANG, Yanjiang
BAO, Feng
Deng, Robert H.
author_sort YANG, Yanjiang
title A New Architecture for User Authentication and Key Exchange Using Password for Federated Enterprises
title_short A New Architecture for User Authentication and Key Exchange Using Password for Federated Enterprises
title_full A New Architecture for User Authentication and Key Exchange Using Password for Federated Enterprises
title_fullStr A New Architecture for User Authentication and Key Exchange Using Password for Federated Enterprises
title_full_unstemmed A New Architecture for User Authentication and Key Exchange Using Password for Federated Enterprises
title_sort new architecture for user authentication and key exchange using password for federated enterprises
publisher Institutional Knowledge at Singapore Management University
publishDate 2005
url https://ink.library.smu.edu.sg/sis_research/552
https://ink.library.smu.edu.sg/context/sis_research/article/1551/viewcontent/Yang2005_Chapter_ANewArchitectureForUserAuthent.pdf
_version_ 1770570476644466688