Comments on the S/KEY user authentication scheme

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

Comments on the S/KEY user authentication scheme

Full text

Pdf (268 KB)

Source

ACM SIGOPS Operating Systems Review archive
Volume 30 , Issue 4 (October 1996) table of contents

Pages: 12 - 16

Year of Publication: 1996

ISSN:0163-5980

Authors

Chris J. Mitchell	Computer Science Department, Royal Holloway, University of London, Egham, Surrey TW20 0EX, England.
Liqun Chen	Computer Science Department, Royal Holloway, University of London, Egham, Surrey TW20 0EX, England.

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 1, Downloads (12 Months): 31, Citation Count: 8

Additional Information:

abstract references cited by index terms collaborative colleagues

Tools and Actions:	Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/240799.240801 What is a DOI?

ABSTRACT

We give a critical analysis of the security properties of the S/KEY user authentication system.

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Liqun Chen , Dieter Gollmann , Chris J. Mitchell, Tailoring authentication protocols to match underlying mechanisms, Proceedings of the First Australasian Conference on Information Security and Privacy, p.121-133, June 24-26, 1996
	2	[2] L. Gong. Variations on the themes of message freshness and replay. In Proceedings: Computer Security Foundations Workshop VI, pages 131-136. IEEE Computer Society Press, Los Alamitos, California, June 1993.
	3	N. Haller, The S/KEY One-Time Password System, RFC Editor, 1995
	4	[4] International Organization for Standardization, Genève, Switzerland. ISO/IEC 9798- 4, Information technology -- Security techniques -- Entity authentication -- Part 4: Mechanisms using a cryptographic check function, March 1995.
	5	Leslie Lamport, Password authentication with insecure communication, Communications of the ACM, v.24 n.11, p.770-772, Nov. 1981 [doi>10.1145/358790.358797]
	6	R. Rivest, The MD4 Message-Digest Algorithm, RFC Editor, 1992

CITED BY 8

	Wei-Chi Ku, A hash-based strong-password authentication scheme without using smart cards, ACM SIGOPS Operating Systems Review, v.38 n.1, p.29-34, January 2004
	Min-Hui Lin , Chin-Chen Chang, A secure one-time password authentication scheme with low-computation for mobile communications, ACM SIGOPS Operating Systems Review, v.38 n.2, p.76-84, April 2004
	Wei-Chi Ku , Hao-Chuan Tsai , Shuai-Min Chen, Two simple attacks on Lin-Shen-Hwang's strong-password authentication protocol, ACM SIGOPS Operating Systems Review, v.37 n.4, p.26-31, October 2003
	Ya-Fen Chang , Chin-Chen Chang , Jui-Yi Kuo, A secure one-time password authentication scheme using smart cards without limiting login times, ACM SIGOPS Operating Systems Review, v.38 n.4, p.80-90, October 2004
	I-En Liao , Cheng-Chi Lee , Min-Shiang Hwang, A password authentication scheme over insecure networks, Journal of Computer and System Sciences, v.72 n.4, p.727-740, June 2006
	C. J. F. Cremers , S. Mauw , E. P. de Vink, Injective synchronisation: an extension of the authentication hierarchy, Theoretical Computer Science, v.367 n.1, p.139-161, 24 November 2006
	Wei-Chi Ku , Hao-Chuan Tsai, Weaknesses and Improvements of Yang-Chang-Hwang's Password Authentication Scheme, Informatica, v.16 n.2, p.203-212, April 2005
	Sookyoung Lee , Krishna M. Sivalingam, An efficient One-Time Password authentication scheme using a smart card, International Journal of Security and Networks, v.4 n.3, p.145-152, July 2009