Hash-Based Password Authentication Protocol Against Phishing and Pharming Attacks
DC Field | Value | Language |
---|---|---|
dc.contributor.author | Kim, Iksu | - |
dc.contributor.author | Cho, Yongyun | - |
dc.date.available | 2018-05-09T07:42:53Z | - |
dc.date.created | 2018-04-17 | - |
dc.date.issued | 2015-01 | - |
dc.identifier.issn | 1016-2364 | - |
dc.identifier.uri | http://scholarworks.bwise.kr/ssu/handle/2018.sw.ssu/8834 | - |
dc.description.abstract | Until now, although many researchers proposed a variety of authentication protocol to verify the identity of the clients, most of these protocols are inefficient and ineffective. Gouda et al. proposed an anti-phishing single password protocol, but it is vulnerable to pharming attacks. In this paper, we show that the protocol is insecure, and propose a hash-based password authentication protocol against phishing and pharming attacks. In the proposed protocol, the authentication tickets passed between clients and servers are secure because they are hash values which can be verified only by clients and servers. The authentication ticket is used only once, which ensures that the proposed protocol is secure against a variety of attacks such as replay, man-in-the-middle, phishing, and pharming. Because the proposed authentication protocol does not require encryption keys during the authentication phase, it is suitable for wireless and mobile communication systems. | - |
dc.publisher | INST INFORMATION SCIENCE | - |
dc.relation.isPartOf | JOURNAL OF INFORMATION SCIENCE AND ENGINEERING | - |
dc.title | Hash-Based Password Authentication Protocol Against Phishing and Pharming Attacks | - |
dc.type | Article | - |
dc.type.rims | ART | - |
dc.identifier.bibliographicCitation | JOURNAL OF INFORMATION SCIENCE AND ENGINEERING, v.31, no.1, pp.343 - 355 | - |
dc.description.journalClass | 1 | - |
dc.identifier.wosid | 000348091300019 | - |
dc.identifier.scopusid | 2-s2.0-84920721226 | - |
dc.citation.endPage | 355 | - |
dc.citation.number | 1 | - |
dc.citation.startPage | 343 | - |
dc.citation.title | JOURNAL OF INFORMATION SCIENCE AND ENGINEERING | - |
dc.citation.volume | 31 | - |
dc.contributor.affiliatedAuthor | Kim, Iksu | - |
dc.type.docType | Article | - |
dc.subject.keywordAuthor | authentication protocol | - |
dc.subject.keywordAuthor | phishing attack | - |
dc.subject.keywordAuthor | pharming attack | - |
dc.subject.keywordAuthor | web security | - |
dc.subject.keywordAuthor | hash function | - |
dc.description.journalRegisteredClass | scie | - |
dc.description.journalRegisteredClass | scopus | - |
Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.
Soongsil University Library 369 Sangdo-Ro, Dongjak-Gu, Seoul, Korea (06978)02-820-0733
COPYRIGHT ⓒ SOONGSIL UNIVERSITY, ALL RIGHTS RESERVED.
Certain data included herein are derived from the © Web of Science of Clarivate Analytics. All rights reserved.
You may not copy or re-distribute this material in whole or in part without the prior written consent of Clarivate Analytics.