Infinite alphabet passwords-a unified model for a class of authentication systems
Other Titles
Proceedings of the International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2010)Abstract
In the paper we propose a formal model for class of authentication systems termed, “Infinite Alphabet Password Systems” (IAPs). We define such systems as those that use a character set for the construction of the authentication token that is theoretically infinite, only bound by practical implementation restrictions. We find that the IAP architecture can feasibly be adapted for use in many real world situations, and may be implemented using a number of system architectures and cryptographic protocols. A security analysis is conducted on an implementation of the model that utilizes images for its underlying alphabet. As a result of the analysis we find that IAPs can offer security benefits over traditional alphanumeric password schemes. In particular some of the significant problems concerning phishing, pharming, replay, dictionary and offline brute force attacks are mitigated.Citation
Gibson M, Conrad M, Maple C (2010) 'Infinite alphabet passwords-a unified model for a class of authentication systems', 2010 International Conference on Security and Cryptography (SECRYPT) - Athens, SciTePress.Publisher
SciTePressAdditional Links
https://www.scitepress.org/Papers/2010/29862/index.htmlType
Conference papers, meetings and proceedingsLanguage
enae974a485f413a2113503eed53cd6c53
10.5220/0002986200940099
Scopus Count
Collections
The following license files are associated with this item:
- Creative Commons
Except where otherwise noted, this item's license is described as http://creativecommons.org/licenses/by-nc-nd/4.0/