Password authentication with insecure communication

Author:
Leslie Lamport

SRI International, Menlo Park, CA

SRI International, Menlo Park, CA
View Profile

Authors Info & Claims

Communications of the ACM Volume 24 Issue 11Nov. 1981pp 770–772https://doi.org/10.1145/358790.358797

Published:01 November 1981Publication History

Communications of the ACM

Abstract

A method of user password authentication is described which is secure even if an intruder can read the system's data, and can tamper with or eavesdrop on the communication between the user and the system. The method assumes a secure one-way encryption function and can be implemented with a microcomputer in the user's terminal.

References

1 Diffie, W., and Hellman, M.E. New directions in cryptography. IEEE Trans. Inform. Theory 1T-22 (Nov. 1976), 644-654.Google ScholarDigital Library
2 Evans, A., Kantrowitz, W., and Weiss, E. A user authentication scheme not requiring secrecy in the computer. Comm. A CM 17, 8 (Aug. 1974), 437-442. Google ScholarDigital Library
3 Wilkes, M.V. Time-Sharing Computer Systems. American Elsevier, New York, 1972. Google ScholarDigital Library

Index Terms

Password authentication with insecure communication

Recommendations

Analysis of Kim-Jeon-Yoo Password Authentication Schemes

Password authentication is a type of authentication protocol for communications over an insecure network. Recently, Kim, Jeon, and Yoo gave an improvement of Yang-Shieh password authentication schemes to resist an existing forgery attack. However, in ...
Read More
Improvement of the Peyravian-Jeffries's user authentication protocol and password change protocol

Remote authentication of users supported by passwords is a broadly adopted method of authentication within insecure network environments. Such protocols typically rely on pre-established secure cryptographic keys or public key infrastructure. Recently, ...
Read More
A Secure Strong-Password Authentication Protocol

Password authentication, which is widely used for authenticated method, also is important protocol by requiring a username and password before being allowed access to resources. In 2001, Lin et al. proposed the optimal strong-password authentication ...
Read More

Comments

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Article

Published in
Communications of the ACM Volume 24, Issue 11
Nov. 1981
64 pages
ISSN:0001-0782
EISSN:1557-7317
DOI:10.1145/358790
Editor:
Robert L. Ashenhurst
Univ. of Chicago, Chicago, IL
Issue’s Table of Contents
Copyright © 1981 ACM
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]
Sponsors
In-Cooperation
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
- Published: 1 November 1981
Permissions
Request permissions about this article.
Request Permissions

Check for updates
Author Tags
authentication
one-way function
passwords
security
Qualifiers
- article
Conference
Funding Sources
Other Metrics
View Article Metrics

Article Metrics
- 2,086
  Total Citations
  View Citations
- 7,652
  Total Downloads
- Downloads (Last 12 months)874
- Downloads (Last 6 weeks)109
Other Metrics
View Author Metrics
Cited By
View all

PDF Format

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Password authentication with insecure communication

Communications of the ACM

Abstract

References

Cited By

Index Terms

Recommendations

Analysis of Kim-Jeon-Yoo Password Authentication Schemes

Improvement of the Peyravian-Jeffries's user authentication protocol and password change protocol

A Secure Strong-Password Authentication Protocol