Skip to main content
Journal Article

Better authentication: Password revolution by evolution

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (2014) 8809 130-145
DOI: 10.1007/978-3-319-12400-1_13
2Citations
Citations of this article
7Readers
Mendeley users who have this article in their library.
Get full text

Abstract

We explore the extent to which we can address three issues with passwords today: the weakness of user-chosen passwords, reuse of passwords across security domains, and the revocation of credentials. We do so while restricting ourselves to changing the password verification function on the server, introducing the use of existing key-servers, and providing users with a password management tool. Our aim is to improve the security and revocation of authentication actions with devices and end-points, while minimising changes which reduce ease of use and ease of deployment. We achieve this using one time tokens derived using publickey cryptography and propose two protocols for use with and without an online rendezvous point.

Author supplied keywords

Cite

CITATION STYLE

APA

Thomas, D. R., & Beresford, A. R. (2014). Better authentication: Password revolution by evolution. Lecture Notes in Computer Science (Including Subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 8809, 130–145. https://doi.org/10.1007/978-3-319-12400-1_13

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free