Securely authenticating a human user without assistance from any auxiliary device in the presence of powerful passive adversaries is an important and challenging problem. Passive adversaries are those that can passively monitor, intercept, and analyze every part of the authentication procedure, except for an initial secret shared between the user and the server. In this paper, we propose a new secure authentication scheme called predicate-based authentication service (PAS). In this scheme, for the first time, the concept of a predicate is introduced for authentication. We conduct analysis on the proposed scheme and implement its prototype system. Our analytical data and experimental data illustrate that the PAS scheme can simultaneously achieve a desired level of security and user friendliness.
S. Chellappan et al., "PAS: Predicate-Based Authentication Services Against Powerful Passive Adversaries," Proceedings of the Computer Security Applications Conference, 2008, Institute of Electrical and Electronics Engineers (IEEE), Dec 2008.
The definitive version is available at http://dx.doi.org/10.1109/ACSAC.2008.23
Computer Security Applications Conference, 2008
United States. Army Research Office
National Science Foundation (U.S.)
Keywords and Phrases
Article - Conference proceedings
© 2008 Institute of Electrical and Electronics Engineers (IEEE), All rights reserved.