EuroPub
Search
Apply

 A Secure and Efficient Two-Server Password Only Authenticated Key Exchange

Journal Title: IOSR Journals (IOSR Journal of Computer Engineering) - Year 2014, Vol 16, Issue 2

Abstract

 Abstract: Password-authenticated key exchange (PAKE) is an authentication mechanism where a client and a server who share a password and authenticate each other with that password and hence both will agree on a cryptographic key. Normally, the passwords which are required to verify the clients are stored on a single server. If the server is compromised, due to some malicious operations like hacking or installing a Trojan horse, passwords which are stored in the server gets revealed. In this paper two servers cooperate to authenticate a client and if one server is cooperated, the attacker still cannot act as a client with the evidence from the conceded server. Current solutions for two servers PAKE are either symmetric in the way that the two server correspondingly contribute to the authentication or asymmetric in the sense that one server confirms the authenticity of legal client with the assistance of another server. This paper presents the development of symmetric protocol for two-server PAKE, where the client can establish different cryptographic keys with the two servers. In addition to that a nonce will be generated during the period of authentication and this will act as a timer. If the timer does not expire with in the period limit, the authentication procedure will be carried out within the limit which provides security to replay attacks.

Authors and Affiliations

Ms. Sandra Bhavadas A. B , Ms. Jini K. M

Keywords

PAKE Dictionary Attack Diffie-Hellman Key Exchange Elgamalencryption Nonce

Related Articles

 [b]Approaches in Key Management Schemes in Mobile Ad-Hoc Networks: A Review [/b]

Abstract: MANET (Mobile Ad hoc Network) is a convenient infrastructure-less contact web that is often susceptible to assorted assaults. Countless critical management schemes for MANETs are given to fix assorted protectio...

 Improvement of limited Storage Placement in Wireless Sensor  Network

 In sensor network a large amount of data need to be collected for future information retrieval. The data centric storage has become an important issue in sensor network. Storage nodes are used in this paper to &...

 A Review on Concept Drift

 Abstract: The concept changes in continuously evolving data streams are termed as concept drifts. It isrequired to address the problems caused due to concept drift and adapt according to the concept changes. Thisca...

Mining High Utility Itemsets from its Concise and Lossless Representations

Abstract: Mining high utility items from databases using the utility of items is an emerging technology.Recent algorithms have a drawback in the performance level considering memory and time.Novel strategy proposed here...

A Fuzzy & K-L Based Reduced Reference ImageQuality

Abstract: Reduced-reference (RR) image quality measures aim to predict the visual quality of distorted images with only partial information about the reference images. In this paper, in first stage uses present threshold...

Download PDF file
  • EP ID EP162811
  • DOI 10.9790/0661-162114247
  • Views 101
  • Downloads 0

How To Cite

Ms. Sandra Bhavadas A. B, Ms. Jini K. M (2014).  A Secure and Efficient Two-Server Password Only Authenticated Key Exchange. IOSR Journals (IOSR Journal of Computer Engineering), 16(2), 42-47. https://europub.co.uk/articles/-A-162811

Sign In Europub

For faster login or register use your social account.

or
Lost Your Password?
Register