TY - GEN
T1 - The application of smartcard-based iris key authentication algorithm in Kerberos
AU - Li, Qiong
AU - Zou, Xinguang
AU - Lin, Huang
AU - Liu, Zhaoqing
AU - Niu, Xiamu
PY - 2006
Y1 - 2006
N2 - Kerberos is a commonly used distributed network authentication protocol. Both Windows 2000 and Windows XP adopted Kerberos as their default authentication method. But in the practical application, it still suffers from the password guessing attacks, along with other password related problems, such as no connection to the valid user, forgotten and stolen, etc. In this paper, a solution is proposed to overcome these problems by using a smartcard-based iris key authentication algorithm to replace the password authentication module of Kerberos. Iris key authentication algorithm binds a valid user's iris template and his key monolithically. Secret sharing, error correcting coding and iris authentication are combined to guarantee that the key can be retrieved exactly only when a matching iris is available, but neither the iris template nor the key can be derived from the iris key independently. Integrating the iris key authentication algorithm with smartcard technique can improve the security, usability and maintainability of Kerberos system. The experiment results show that the scheme is feasible and secure.
AB - Kerberos is a commonly used distributed network authentication protocol. Both Windows 2000 and Windows XP adopted Kerberos as their default authentication method. But in the practical application, it still suffers from the password guessing attacks, along with other password related problems, such as no connection to the valid user, forgotten and stolen, etc. In this paper, a solution is proposed to overcome these problems by using a smartcard-based iris key authentication algorithm to replace the password authentication module of Kerberos. Iris key authentication algorithm binds a valid user's iris template and his key monolithically. Secret sharing, error correcting coding and iris authentication are combined to guarantee that the key can be retrieved exactly only when a matching iris is available, but neither the iris template nor the key can be derived from the iris key independently. Integrating the iris key authentication algorithm with smartcard technique can improve the security, usability and maintainability of Kerberos system. The experiment results show that the scheme is feasible and secure.
KW - Error correction coding
KW - Iris authentication
KW - Kerberos
KW - Network security
KW - Secret sharing
UR - https://www.scopus.com/pages/publications/34047097826
M3 - 会议稿件
AN - SCOPUS:34047097826
SN - 0889865906
SN - 9780889865907
T3 - Proceedings of the IASTED International Conference on Networks and Communication Systems 2006
SP - 340
EP - 345
BT - Proceedings of the IASTED International Conference on Networks and Communication Systems 2006
T2 - IASTED International Conference on Networks and Communication Systems 2006
Y2 - 29 March 2006 through 31 March 2006
ER -