Manageable One-Time Password for Consumer Applications

One-time password (OTP) typically provides a better security protection than static password. However, a hindrance to consumer experience is the OTP manageability: users may need to store many secret values when they use OTP for authentication of distinct websites. In this paper, we extend the passw...

Full description

Saved in:
Bibliographic Details
Main Authors: Long, M., Blumenthal, U.
Format: Conference Proceeding
Language:English
Subjects:
Authentication
Bandwidth
Computational efficiency
Computer architecture
Cryptography
Personal digital assistants
Prototypes
Smart phones
Usability
Web server
Online Access:Request full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:One-time password (OTP) typically provides a better security protection than static password. However, a hindrance to consumer experience is the OTP manageability: users may need to store many secret values when they use OTP for authentication of distinct websites. In this paper, we extend the password generator technique to add the manageability to OTP authentication while retaining the computation and communication efficiency. Under the proposed scheme, a user, memorizing one password, can perform OTP authentication with various websites. Furthermore, the manageability for authentication servers is also improved, as the proposed scheme enables servers to infer the security status of client devices based on the received one-time passwords.
ISSN:2158-3994
2158-4001
DOI:10.1109/ICCE.2007.341415