On the Security of PAS (Predicate-Based Authentication Service)

机译：关于PAS（基于谓词的身份验证服务）的安全性

获取原文

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

Recently a new human authentication scheme called PAS (predicate-based authentication service) was proposed, which does not require the assistance of any supplementary device. The main security claim of PAS is to resist passive adversaries who can observe the whole authentication session between the human user and the remote server. In this paper we show that PAS is insecure against both brute force attack and a probabilistic attack. In particular, we show that its security against brute force attack was strongly overestimated. Furthermore, we introduce a probabilistic attack, which can break part of the password even with a very small number of observed authentication sessions. Although the proposed attack cannot completely break the password, it can downgrade the PAS system to a much weaker system similar to common OTP (one-time password) systems.

机译：最近，提出了一种新的人工认证方案，称为PAS（基于谓词的认证服务），它不需要任何辅助设备的帮助。 PAS的主要安全性主张是抵抗被动的对手，他们可以观察人类用户与远程服务器之间的整个身份验证会话。在本文中，我们证明了PAS对于暴力攻击和概率攻击都是不安全的。特别是，我们证明了其针对暴力攻击的安全性被高估了。此外，我们引入了一种概率攻击，即使观察到的身份验证会话数量很少，它也可能破坏部分密码。尽管所提议的攻击无法完全破解密码，但是它可以将PAS系统降级为与普通OTP（一次性密码）系统相似的更弱的系统。

著录项

来源
《Computer Security Applications Conference, 2009. ACSAC '09》|2009年|209-218|共10页
会议地点 Honolulu HI(US);Honolulu HI(US);Honolulu HI(US)
作者
Li Shujun; Asghar Hassan Jameel; Pieprzyk Josef; Sadeghi Ahmad-Reza; Schmitz Roland; Wang Huaxiong;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Matsumoto-Imai threat model; OTP (one-time password); PAS; attack; authentication; security; usability;

机译：松本今井威胁模型; OTP（一次性密码）; PAS;攻击;认证;安全性;可用性;

相似文献

外文文献
中文文献
专利

1. Security Impact on e-ATM Windows Communication Foundation Services using Certificate based Authentication and Protection: An implementation of Message Level Security based on .NET Technique [J] . Subhash Medhi, Abhijit Bora, Tulshi Bezboruah International journal of information retrieval research . 2016,第3期

机译：使用基于证书的身份验证和保护对e-ATM Windows Communication Foundation服务的安全影响：基于.NET技术的消息级别安全性的实现
2. Strongly Secure Predicate-Based Authenticated Key Exchange: Definition and Constructions* [J] . Atsushi FUJIOKA, Koutarou SUZUKI, Kazuki YONEYAMA IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences . 2012,第1期

机译：基于安全性强的谓词的认证密钥交换：定义和构造*
3. Security services as coping mechanisms: an investigation into user intention to adopt an email authentication service [J] . Tejaswini Herath, Rui Chen, Jingguo Wang, Information systems journal . 2014,第1期

机译：安全服务作为应对机制：调查用户采用电子邮件身份验证服务的意图
4. On the Security of PAS (Predicate-based Authentication Service) [C] . Shujun Li, Hassan Jameel Asghar, Josef Pieprzyk, Annual Computer Security Applications Conference . 2009

机译：关于PA的安全性（基于谓词的身份验证服务）
5. Resilient security in pervasive Internet: Data authentication and service availability. [D] . Yang, Hao. 2006

机译：普及型Internet中的弹性安全性：数据身份验证和服务可用性。
6. Security Analysis and Improvement of an Anonymous Authentication Scheme for Roaming Services [O] . Youngsook Lee, Juryon Paik -1

机译：漫游服务匿名认证方案的安全性分析与改进
7. On the Security of PAS (Predicate-based Authentication Service) [O] . Li, SJ, Asghar, HJ, Pieprzyk, J, 2009

机译：关于PAS（基于谓词的身份验证服务）的安全性

On the Security of PAS (Predicate-Based Authentication Service)

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅