Skip to search boxSkip to navigationSkip to main content

Infinite alphabet passwords-a unified model for a class of authentication systems

Research Output: Chapter in Book/Report/Conference proceeding Conference contribution Peer-review

Open access

Abstract

In the paper we propose a formal model for class of authentication systems termed, “Infinite Alphabet Password Systems” (IAPs). We define such systems as those that use a character set for the construction of the authentication token that is theoretically infinite, only bound by practical implementation restrictions. We find that the IAP architecture can feasibly be adapted for use in many real world situations, and may be implemented using a number of system architectures and cryptographic protocols. A security analysis is conducted on an implementation of the model that utilizes images for its underlying alphabet. As a result of the analysis we find that IAPs can offer security benefits over traditional alphanumeric password schemes. In particular some of the significant problems concerning phishing, pharming, replay, dictionary and offline brute force attacks are mitigated.

Publication Information

Output type

Research Output: Chapter in Book/Report/Conference proceeding Conference contribution Peer-review

Original language

English

Pages from-to (Number of pages)

Pages 94-99

Publication milestones

  • Published - 05/04/2011

Publication status

Published - 05/04/2011

Publisher

SciTePress

ISBN (Electronic)

978-989-8425-18-8

External Publication IDs

  • handle.net: 10547/623529

Host publication title

Proceedings of the International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2010)

Publication metrics

Metrics

Download statistics
Download count
3