NDLI: Protecting password piracy using authentication protocol

Content Provider	IEEE Xplore Digital Library
Author	Subhashini, K. Bhuvaneswari, M.S.
Copyright Year	2013
Description	Author affiliation: Dept. of Comput. Sci. & Eng., Sivakasi Anna Univ., Chennai, India (Subhashini, K.; Bhuvaneswari, M.S.)
Abstract	For past few decades, the text password is the primary means of user authentication in websites. The users select their passwords on their own. The password based authentication resist against brute force attacks and dictionary attacks. But the user passwords are prone to be stolen and can be compromised to attacks and vulnerabilities. First, the user reuses the password for several websites as it is difficult to remember several passwords. This lead to the loss of sensitive information and hackers can easily intrude into user accounts. If one of the websites password is compromised then the intruder can gain access to more websites. Second, the users may enter the passwords into untrusted systems may lead to password thief threat. The adversaries can launch several password attacks such as phishing, key loggers and malware. In this paper, an authentication protocol is proposed which requires a user's cellphone, an untrusted system, a telecommunication provider and a web server. It comprises of three phases: Registration phase, Login phase and Recovery phase. Here users have to remember only a long-term password for login to all websites.
Sponsorship	IEEE Madras Sect.
Starting Page	116
Ending Page	119
File Size	335491
Page Count	4
File Format	PDF
ISBN	9781467357869
e-ISBN	9781467357883
DOI	10.1109/ICICES.2013.6508342
Language	English
Publisher	Institute of Electrical and Electronics Engineers, Inc. (IEEE)
Publisher Date	2013-02-21
Publisher Place	India
Access Restriction	Subscribed
Rights Holder	Institute of Electrical and Electronics Engineers, Inc. (IEEE)
Subject Keyword	Protocols Authentication Browsers Servers Cryptography Smart phones
Content Type	Text
Resource Type	Article

Sl.	Authority	Responsibilities	Communication Details
1	Ministry of Education (GoI), Department of Higher Education	Sanctioning Authority	https://www.education.gov.in/ict-initiatives
2	Indian Institute of Technology Kharagpur	Host Institute of the Project: The host institute of the project is responsible for providing infrastructure support and hosting the project	https://www.iitkgp.ac.in
3	National Digital Library of India Office, Indian Institute of Technology Kharagpur	The administrative and infrastructural headquarters of the project	Dr. B. Sutradhar bsutra@ndl.gov.in
4	Project PI / Joint PI	Principal Investigator and Joint Principal Investigators of the project	Dr. B. Sutradhar bsutra@ndl.gov.in Prof. Saswat Chakrabarti will be added soon
5	Website/Portal (Helpdesk)	Queries regarding NDLI and its services	support@ndl.gov.in
6	Contents and Copyright Issues	Queries related to content curation and copyright issues	content@ndl.gov.in
7	National Digital Library of India Club (NDLI Club)	Queries related to NDLI Club formation, support, user awareness program, seminar/symposium, collaboration, social media, promotion, and outreach	clubsupport@ndl.gov.in
8	Digital Preservation Centre (DPC)	Assistance with digitizing and archiving copyright-free printed books	dpc@ndl.gov.in
9	IDR Setup or Support	Queries related to establishment and support of Institutional Digital Repository (IDR) and IDR workshops	idr@ndl.gov.in