Password authentication using one-time key-based signature and homomorphic encryption

Jong Hyuk Im, Mun Kyu Lee

Research output: Chapter in Book/Report/Conference proceedingChapterpeer-review

Abstract

User authentication is a process for a system to verify the identity of a claimed user and to give access permission. Although there are many other authentication methods such as biometrics and physical tokens, passwords are still being used in many applications due to easy deployment. To enhance the security against possible attacks such as an off-line dictionary attack, passwords are usually stored in a hashed form using a random nonce called a salt. However, this does not completely solve the security issue. In this paper, we propose a new password-based authentication method using homomorphic encryption where a password is stored in a remote server in an encrypted form and an input password is compared with the stored one on the encrypted domain. For this purpose, we also propose a new cryptographic primitive called one-time private key-based digital signature.

Original languageEnglish
Title of host publicationLecture Notes on Data Engineering and Communications Technologies
PublisherSpringer Science and Business Media Deutschland GmbH
Pages467-474
Number of pages8
DOIs
StatePublished - 2017

Publication series

NameLecture Notes on Data Engineering and Communications Technologies
Volume2
ISSN (Print)2367-4512
ISSN (Electronic)2367-4520

Bibliographical note

Publisher Copyright:
© Springer International Publishing AG 2017.

Fingerprint

Dive into the research topics of 'Password authentication using one-time key-based signature and homomorphic encryption'. Together they form a unique fingerprint.

Cite this