A Secure and Efficient Two-Server Password Only Authenticated Key Exchange

Journal Title: IOSR Journals (IOSR Journal of Computer Engineering) - Year 2014, Vol 16, Issue 2

Abstract

 Abstract: Password-authenticated key exchange (PAKE) is an authentication mechanism where a client and a server who share a password and authenticate each other with that password and hence both will agree on a cryptographic key. Normally, the passwords which are required to verify the clients are stored on a single server. If the server is compromised, due to some malicious operations like hacking or installing a Trojan horse, passwords which are stored in the server gets revealed. In this paper two servers cooperate to authenticate a client and if one server is cooperated, the attacker still cannot act as a client with the evidence from the conceded server. Current solutions for two servers PAKE are either symmetric in the way that the two server correspondingly contribute to the authentication or asymmetric in the sense that one server confirms the authenticity of legal client with the assistance of another server. This paper presents the development of symmetric protocol for two-server PAKE, where the client can establish different cryptographic keys with the two servers. In addition to that a nonce will be generated during the period of authentication and this will act as a timer. If the timer does not expire with in the period limit, the authentication procedure will be carried out within the limit which provides security to replay attacks.

Authors and Affiliations

Ms. Sandra Bhavadas A. B , Ms. Jini K. M

Keywords

Related Articles

Mobile Streaming: Android Based Mobile Tv

Cloud computing is an emerging technology aimed at providing various computing and storage services over the Internet. Multimedia cloud computing is generally related to multimedia computing over grids, content delivery,...

Subacute sclerosing panencephalitis (SSPE) In Iraq

Objective: Subacute sclerosing panencephalitis (SSPE) is a progressive inflammatory disease of the central nervous system with poor prognosis and high mortality, caused by the persistent infection with measles virus(MV)....

 Modulo Search Trees (Plain and Z-Overlapped)

 Abstract: This paper exploits the modulo division operation to construct a tree which is termed as Modulo search tree with two versions out of which one is coined as Plain Modulo Search Tree and the other is termed...

Fault Discovery Probability Analysis for Software Reliability Estimation

Abstract: Software reliability approximation and testing gauge how efficiently software works and meet up the end-user necessities. Software reliability assurance that users can enter the correct information on a day-to-...

 Implementing High Performance Retrieval Process by Max-Score Ranking

 This paper presents a comparison report of two different processes of retrieving a keyword or data’s from a given database or from a multiple databases. The process1 known as Extended Boolean Retrieval (EBR)model...

Download PDF file
  • EP ID EP162811
  • DOI 10.9790/0661-162114247
  • Views 107
  • Downloads 0

How To Cite

Ms. Sandra Bhavadas A. B, Ms. Jini K. M (2014).  A Secure and Efficient Two-Server Password Only Authenticated Key Exchange. IOSR Journals (IOSR Journal of Computer Engineering), 16(2), 42-47. https://europub.co.uk/articles/-A-162811