Name
Abstract | ||
|---|---|---|
Remote commercial applications like databases, telebanking, electronic mail systems run security mechanisms based on passwords. Too many passwords per user become a security problem. The goal of this research is to design systems allowing "password-less" user access to network services while improving the security of existing password mechanisms. A system relying on one primary login with one password is proposed. A "guard" functionality on the user login host's side relays the application service suppliers' password requests to a password server which satisfies these requests with strong "machine" passwords. To the user, this system appears to be password-less. Application providers do not have to give up their current password security. Variations of this architecture and its protocols for three levels of increasing security are described, employing complete message traffic encryption, public key cryptography, trusted hardware and software and strong authentication devices like chipcards. |
Year | Venue | Keywords |
|---|---|---|
1992 | IFIP Congress (2) | network protocols,security and protection,distributed systems,computer-communication networks,public key cryptography,network protocol,satisfiability,distributed system |
Field | DocType | ISBN |
Computer science,Computer security,Computer network,Password,Distributed computing | Conference | 0-444-89750-X |
Citations | PageRank | References |
1 | 0.34 | 7 |
Authors | ||
4 | ||
Name | Order | Citations | PageRank |
|---|---|---|---|
| ralf hauser | 1 | 80 | 11.58 |
| E. Stewart Lee | 2 | 60 | 9.22 |
| m sc a | 3 | 1 | 0.34 |
| d ph | 4 | 36 | 8.50 |