A mutual one-time password for online application

A. Azarnik, Arash Khosravi, Shahab Rezaian, Arash Moradi
{"title":"A mutual one-time password for online application","authors":"A. Azarnik, Arash Khosravi, Shahab Rezaian, Arash Moradi","doi":"10.1109/dchpc55044.2022.9732093","DOIUrl":null,"url":null,"abstract":"The mobile and web application have become more popular due to easy access and be convenient to everybody, it is essential to look at their security issues from different aspects. User authentication is one of these issues that plays an important role for most applications. If a system authenticates a user, it means that person can access what are allowed in the system. One-time password is a kind of authentication that helps to increase the security through identification. Common methods in this area use extra devices such as smart card, token, and cell phone. However, these devices enforce users to carry hardware, to pay money, and to maintain. In this article, we propose a mutual one-time password which employs a formula to generate password for user, and every time user must use previous password and formula to compute new password. The communication line during authentication phase is supposed insecure; and a mutual authentication helps to increase the level of security. Security analysis shows how this method is secure; and comparison with some models shows its positive points.","PeriodicalId":59014,"journal":{"name":"高性能计算技术","volume":"27 1","pages":"86-92"},"PeriodicalIF":0.0000,"publicationDate":"2022-03-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"高性能计算技术","FirstCategoryId":"1093","ListUrlMain":"https://doi.org/10.1109/dchpc55044.2022.9732093","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0

Abstract

The mobile and web application have become more popular due to easy access and be convenient to everybody, it is essential to look at their security issues from different aspects. User authentication is one of these issues that plays an important role for most applications. If a system authenticates a user, it means that person can access what are allowed in the system. One-time password is a kind of authentication that helps to increase the security through identification. Common methods in this area use extra devices such as smart card, token, and cell phone. However, these devices enforce users to carry hardware, to pay money, and to maintain. In this article, we propose a mutual one-time password which employs a formula to generate password for user, and every time user must use previous password and formula to compute new password. The communication line during authentication phase is supposed insecure; and a mutual authentication helps to increase the level of security. Security analysis shows how this method is secure; and comparison with some models shows its positive points.
网上申请的一次性密码
由于易于访问和方便每个人,移动和web应用程序变得越来越流行,从不同的角度来看待它们的安全问题是至关重要的。用户身份验证是对大多数应用程序起重要作用的问题之一。如果系统对用户进行身份验证,则意味着该用户可以访问系统中允许的内容。一次性密码是一种通过身份识别来提高安全性的认证方式。这方面的常用方法使用额外的设备,如智能卡、令牌和手机。然而,这些设备迫使用户携带硬件、付费和维护。在本文中,我们提出了一种相互一次性的密码,该密码采用公式为用户生成密码,每次用户都必须使用以前的密码和公式计算新密码。假定认证阶段的通信线路不安全;相互认证有助于提高安全级别。安全性分析显示了该方法的安全性;并与一些模型进行了比较,表明了其优点。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文 求助全文
来源期刊
自引率
0.00%
发文量
1121
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
确定
请完成安全验证×
copy
已复制链接
快去分享给好友吧!
我知道了
右上角分享
点击右上角分享
0
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信