噪声密码安全技术

2009 International Conference for Internet Technology and Secured Transactions, (ICITST) Pub Date : 2009-11-01 DOI:10.1109/ICITST.2009.5402537

K. Alghathbar, H. Mahmoud

{"title":"噪声密码安全技术","authors":"K. Alghathbar, H. Mahmoud","doi":"10.1109/ICITST.2009.5402537","DOIUrl":null,"url":null,"abstract":"One-time password makes it more difficult to gain unauthorized access to restricted resources. In our previous work we designed a one-time password scheme that implements our noisy password scheme. The previous work proved to be a secure password entry scheme, but was somehow difficult for users. In this paper, we propose a technique for improving the security of password-based applications by incorporating predefined keystroke patterns into the password. The proposed system attempts to alleviate the problem of shoulder surfing by inserting different noise patterns in the password making. The user is authenticated by totally different password every time. The noisy password constitute of several parts, the actual password and additional noisy parts. Different password parts will be entered using keystroke patterns not characters. The noisy parts are proven to be robust against any hacking attacks. Experimental results give good indication of the ease of utilization of the new system with low error rates.","PeriodicalId":251169,"journal":{"name":"2009 International Conference for Internet Technology and Secured Transactions, (ICITST)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2009-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":"{\"title\":\"Noisy password security technique\",\"authors\":\"K. Alghathbar, H. Mahmoud\",\"doi\":\"10.1109/ICITST.2009.5402537\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"One-time password makes it more difficult to gain unauthorized access to restricted resources. In our previous work we designed a one-time password scheme that implements our noisy password scheme. The previous work proved to be a secure password entry scheme, but was somehow difficult for users. In this paper, we propose a technique for improving the security of password-based applications by incorporating predefined keystroke patterns into the password. The proposed system attempts to alleviate the problem of shoulder surfing by inserting different noise patterns in the password making. The user is authenticated by totally different password every time. The noisy password constitute of several parts, the actual password and additional noisy parts. Different password parts will be entered using keystroke patterns not characters. The noisy parts are proven to be robust against any hacking attacks. Experimental results give good indication of the ease of utilization of the new system with low error rates.\",\"PeriodicalId\":251169,\"journal\":{\"name\":\"2009 International Conference for Internet Technology and Secured Transactions, (ICITST)\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2009-11-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"5\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2009 International Conference for Internet Technology and Secured Transactions, (ICITST)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICITST.2009.5402537\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2009 International Conference for Internet Technology and Secured Transactions, (ICITST)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICITST.2009.5402537","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 5

摘要

一次性密码使未经授权访问受限制的资源变得更加困难。在我们之前的工作中，我们设计了一个一次性密码方案来实现我们的噪声密码方案。先前的工作证明是一种安全的密码输入方案，但对用户来说有些困难。在本文中，我们提出了一种技术，通过将预定义的击键模式合并到密码中来提高基于密码的应用程序的安全性。提出的系统试图通过在密码制作中插入不同的噪声模式来缓解肩部冲浪的问题。用户每次使用完全不同的密码进行身份验证。噪声密码由实际密码和附加噪声部分组成。不同的密码部分将使用击键模式而不是字符输入。噪声部分已被证明对任何黑客攻击都具有鲁棒性。实验结果表明，该系统易于使用，错误率低。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Noisy password security technique

One-time password makes it more difficult to gain unauthorized access to restricted resources. In our previous work we designed a one-time password scheme that implements our noisy password scheme. The previous work proved to be a secure password entry scheme, but was somehow difficult for users. In this paper, we propose a technique for improving the security of password-based applications by incorporating predefined keystroke patterns into the password. The proposed system attempts to alleviate the problem of shoulder surfing by inserting different noise patterns in the password making. The user is authenticated by totally different password every time. The noisy password constitute of several parts, the actual password and additional noisy parts. Different password parts will be entered using keystroke patterns not characters. The noisy parts are proven to be robust against any hacking attacks. Experimental results give good indication of the ease of utilization of the new system with low error rates.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2009 International Conference for Internet Technology and Secured Transactions, (ICITST)

自引率

0.00%

发文量