A Secure and Efficient Two-Server Password Only Authenticated Key Exchange

Journal Title: IOSR Journals (IOSR Journal of Computer Engineering) - Year 2014, Vol 16, Issue 2

Abstract

 Abstract: Password-authenticated key exchange (PAKE) is an authentication mechanism where a client and a server who share a password and authenticate each other with that password and hence both will agree on a cryptographic key. Normally, the passwords which are required to verify the clients are stored on a single server. If the server is compromised, due to some malicious operations like hacking or installing a Trojan horse, passwords which are stored in the server gets revealed. In this paper two servers cooperate to authenticate a client and if one server is cooperated, the attacker still cannot act as a client with the evidence from the conceded server. Current solutions for two servers PAKE are either symmetric in the way that the two server correspondingly contribute to the authentication or asymmetric in the sense that one server confirms the authenticity of legal client with the assistance of another server. This paper presents the development of symmetric protocol for two-server PAKE, where the client can establish different cryptographic keys with the two servers. In addition to that a nonce will be generated during the period of authentication and this will act as a timer. If the timer does not expire with in the period limit, the authentication procedure will be carried out within the limit which provides security to replay attacks.

Authors and Affiliations

Ms. Sandra Bhavadas A. B , Ms. Jini K. M

Keywords

Related Articles

 Ontology Based Data Analysing Approach for Actionable Knowledge Discovery

 Abstract: In Data Mining, the effectiveness of association rules is limited by the huge quantity of delivered rules. In this manuscript, we propose a new approach to prune and filter discovered rules. An interactiv...

 Performance Evaluation of the Bingo Electronic Voting Protocol

 Abstract: Research in e-voting aims at designing usable and secure electronic voting systems. This paperprovides an empirical analysis of the computational performance of a prototype implementation of the Bingoelec...

“The Impact Of Incentives To Indigenous Farmers (A1 And A 2) In Maize Production In Zimbabwe” A Case Of Mashonaland East Province, Macheke, Zimbabwe.

Abstract: The current study was concerned with the need to establish incentives for farmers to boostproduction of maize in Macheke, Mashonaland East Province, in Zimbabwe. This study was motivated by anobservation that t...

Satellite Image Classification By Neural Networks And Fuzzy Inference System For

This paper studies the performance and efficiency of the classification approaches on the satellite images. In this work, two methods will be used for image classification: the neural network and fuzzy inference methods....

 Image Steganography and Global Terrorism

 This paper informs the reader how an innocent looking digital image hides a deadly terrorist plan. It analyses the strengths of image steganography and the reasons why terrorists are relying on it. It also aims t...

Download PDF file
  • EP ID EP162811
  • DOI 10.9790/0661-162114247
  • Views 103
  • Downloads 0

How To Cite

Ms. Sandra Bhavadas A. B, Ms. Jini K. M (2014).  A Secure and Efficient Two-Server Password Only Authenticated Key Exchange. IOSR Journals (IOSR Journal of Computer Engineering), 16(2), 42-47. https://europub.co.uk/articles/-A-162811