English

A protected password change protocol

Cryptography and Security 2007-05-23 v1
Authors: Ren-Chiun Wang , Chou-Chen Yang , Kun-Ru Mo
View on arXiv PDF

Abstract

Some protected password change protocols were proposed. However, the previous protocols were easily vulnerable to several attacks such as denial of service, password guessing, stolen-verifier and impersonation atacks etc. Recently, Chang et al. proposed a simple authenticated key agreement and protected password change protocol for enhancing the security and efficiency. In this paper, authors shall show that password guessing, denial of service and known-key attacks can work in their password change protocol. At the same time, authors shall propose a new password change protocol to withstand all the threats of security.

Keywords

authentication protocol computer security cryptography

Cite

@article{arxiv.cs/0506105,
  title  = {A protected password change protocol},
  author = {Ren-Chiun Wang and Chou-Chen Yang and Kun-Ru Mo},
  journal= {arXiv preprint arXiv:cs/0506105},
  year   = {2007}
}

Related papers

View all related →
Quantum Physics · Physics
Secure Quantum Passwords
Masahiro Hotta, Masanao Ozawa
2008-06-09
Cryptography and Security · Computer Science
Authentication Mechanism for Resistance to Password Stealing and Reuse Attack
Sharayu A. Aghav, RajneeshKaur Bedi
2014-02-27
Cryptography and Security · Computer Science
Comments on Five Smart Card Based Password Authentication Protocols
Yalin Chen, Jue-Sam Chou*, Chun-Hui Huang
2010-07-02
Cryptography and Security · Computer Science
Reverse Online Guessing Attacks on PAKE Protocols
Eloise Christian, Tejas Gadwalkar, Arthur Azevedo de Amorim, Edward V. Zieglar
2026-02-10
Cryptography and Security · Computer Science
A Robust Password-Based Multi-Server Authentication Scheme
Vorugunti Chandra Sekhar, Mrudula Sarvabhatla
2014-01-24
Cryptography and Security · Computer Science
Key Substitution in the Symbolic Analysis of Cryptographic Protocols (extended version)
Yannick Chevalier, Mounira Kourjieh
2007-10-31
Cryptography and Security · Computer Science
A Security Enhanced Authentication Protocol
Sai Sreekar Vankayalapati, Srijanee Mookherji, Vanga Odelu
2023-12-27
Cryptography and Security · Computer Science
A secure email login system using virtual password
Bhavin Tanti, Nishant Doshi
2011-03-22
Cryptography and Security · Computer Science
Pretty-Simple Password-Authenticated Key-Exchange Protocol
Kazukuni Kobara, Hideki Imai
2007-05-23
Cryptography and Security · Computer Science
A novel Two-Factor HoneyToken Authentication Mechanism
Vassilis Papaspirou, Leandros Maglaras, Mohamed Amine Ferrag, Ioanna Kantzavelou +2
2021-01-22
Cryptography and Security · Computer Science
Weakness Analysis and Improvement of a Gateway-Oriented Password-Based Authenticated Key Exchange Protocol
He Debiao, Chen Jianhua, Hu Jin
2010-01-19
Cryptography and Security · Computer Science
A Survey on Password Guessing
Lam Tran, Thuc Nguyen, Changho Seo, Hyunil Kim +1
2022-12-27
Cryptography and Security · Computer Science
Systematic Solutions to Login and Authentication Security Problems: A Dual-Password Login-Authentication Mechanism
Suyun Borjigin
2024-06-03
Cryptography and Security · Computer Science
System Password Security: Attack and Defense Mechanisms
Chaofang Shi, Zhongwen Li, Xiaoqi Li
2026-02-03
Cryptography and Security · Computer Science
Detection and Prevention of New Attacks for ID-based Authentication Protocols
Jinyong Chen, Reiner Dojen, Anca Jurcut
2021-02-01
Cryptography and Security · Computer Science
A Security Protocol for Multi-User Authentication
Srikanth Chava
2008-04-15
Cryptography and Security · Computer Science
The Password Change Phase is Still Insecure
Manoj Kumar
2007-05-23
Cryptography and Security · Computer Science
Human-Usable Password Schemas: Beyond Information-Theoretic Security
Elan Rosenfeld, Santosh Vempala, Manuel Blum
2019-06-04
Cryptography and Security · Computer Science
On Deep Learning in Password Guessing, a Survey
Fangyi Yu
2022-12-13
Cryptography and Security · Computer Science
Weaknesses of a dynamic identity based authentication protocol for multi-server architecture
Weiwei Han
2012-01-05
Cryptography and Security · Computer Science
Password similarity using probabilistic data structures
Davide Berardi, Franco Callegati, Andrea Melis, Marco Prandini
2020-09-18
Networking and Internet Architecture · Computer Science
Securing Password Authentication for Web-based Applications
Teik Guan Tan, Pawel Szalachowski, Jianying Zhou
2020-11-13
Cryptography and Security · Computer Science
On The Security Evaluation of Partial Password Implementations
Theodosis Mourouzis, Marcin Wojcik, Nikos Komninos
2017-01-03
Cryptography and Security · Computer Science
Persistent Asymmetric Password-Based Key Exchange
Shaoquan Jiang
2010-09-28
Cryptography and Security · Computer Science
Password Protected Smart Card and Memory Stick Authentication Against Off-line Dictionary Attacks
Yongge Wang
2012-07-24