Password authentication with insecure communication
Communications of the ACM
Using IC Cards to Remotely Login Passwords without Verification Tables
AINA '04 Proceedings of the 18th International Conference on Advanced Information Networking and Applications - Volume 2
Remote access and networked appliance control using biometrics features
IEEE Transactions on Consumer Electronics
Robust one-time password authentication scheme using smart card for home network environment
Computer Communications
Secure user authentication mechanism in digital home network environments
EUC'06 Proceedings of the 2006 international conference on Embedded and Ubiquitous Computing
Hi-index | 0.00 |
One-Time Password (OTP) authentication protocol can be used for authenticating a user by a server. It increases security by using a new password for each authentication while the previous password scheme iteratively uses a same password. In this paper we propose a secure user authentication protocol using a similar approach as S/Key, Lamport, Revised SAS and SAS-2 protocol but more secure than them. It employs a three-way challenge-response handshake technique to provide mutual authentication. Also, computation in the user device is reduced, resulting in less power consumption in the mobile devices. Compared with the S/KEY and Lamport protocol, the proposed protocol solves the problem of storing authentication data and limitation in the usage count. Moreover, the proposed scheme is practical to be used with Smart Card, and administration of authentication information is easy.