A Password-based Authentication System based on The CAPTCHA AI Problem

A Password-based Authentication System based on The CAPTCHA AI Problem

Powerful cryptographic systems based on mathematically hard problems are utilized to ensure tighter security for data communication purposes. However, these traditional cryptographic systems are bound to fail in the ensuing era of quantum computing. Thus, Artificial Intelligence (AI) inspired securi...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE access 2020-01, Vol.8, p.1-1
Hauptverfasser: Alajmi, Masoud, Elashry, Ibrahim, El-Sayed, Hala S., Faragallah, Osama S.
Format: Artikel
Sprache:eng
Schlagworte:
Adaptive systems
AI hard problems
Artificial intelligence
Authentication
CAPTCHA
Cryptography
Data communication
Logic
Parameter sensitivity
Password-based Authentication
Passwords
Quantum computing
Security
Servers
Statistical analysis
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page 1
container_issue
container_start_page 1
container_title IEEE access
container_volume 8
creator Alajmi, Masoud
Elashry, Ibrahim
El-Sayed, Hala S.
Faragallah, Osama S.
description Powerful cryptographic systems based on mathematically hard problems are utilized to ensure tighter security for data communication purposes. However, these traditional cryptographic systems are bound to fail in the ensuing era of quantum computing. Thus, Artificial Intelligence (AI) inspired security methods are needed to secure communications in the era of quantum computing. This paper presents a challenge-response password-based authentication system based on the Completely Automated Public Turing test to tell Computers and Humans Apart (CAPTCHA) AI hard problem. In this system, a server sends a challenge text to a client, then the client generates a random image and blends the challenge text inside this random image using his password. Then the client sends the generated image to the server. The server extracts the challenge text from the sent image using his copy of the client's password. If the extracted challenge text is the same as the sent challenge text, then both the client's and the server's copies of the password match and the client is authenticated. The efficiency of the proposed system is analyzed and the outcomes prove that the proposed system is efficient in terms of time and space. Also, a security investigation of the proposed system is employed, and the results prove that the system is probabilistic and very sensitive to changes in its parameters. It does not leak any statistical information about the client's password and the generated images cannot be distinguished from random images. In addition, the security of the proposed system is analyzed against two possible attacks; the brute force attack and the replay attack and the results prove that the proposed system is immune to these attacks. Finally, the proposed system is ensured to be indistinguishably secure against an adaptive chosen-challenge text attack (IND-ACCTA), based on the CAPTCHA AI hard problem when the hash function H is modeled as a random oracle.
doi_str_mv 10.1109/ACCESS.2020.3018659
format Article
fullrecord <record><control><sourceid>proquest_ieee_</sourceid><recordid>TN_cdi_ieee_primary_9173668</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><ieee_id>9173668</ieee_id><doaj_id>oai_doaj_org_article_7630c59a56e3460382201bee2e7f2817</doaj_id><sourcerecordid>2454644345</sourcerecordid><originalsourceid>FETCH-LOGICAL-c408t-acb2ba9e85dc5ef8a43fcef052912c868531164791cdd158bf662a671760548e3</originalsourceid><addsrcrecordid>eNpNUF1rwjAUDWODDecv8KWw57p8N3ksRTdBmKB7Dml6OytqtqQy_PeLq4zdl_t1zrmXg9CE4CkhWD-XVTVbr6cUUzxlmCgp9A16oETqnAkmb__V92gc4w6nUGkkigc0L7OVjfHbhyavbYQmK0_9Fo5952zf-WO2PsceDtmwS_1mC1lVrjbVa5mVi2wVfL2HwyO6a-0-wviaR-h9PkuYfPn2sqjKZe44Vn1uXU1rq0GJxgloleWsddBiQTWhTkklGCGSF5q4piFC1a2U1MqCFBILroCN0GLQbbzdmc_QHWw4G2878zvw4cPYkH7fgykkw05oKyQwLjFTlGJSA1AoWqpIkbSeBq3P4L9OEHuz86dwTO8bygWXnDMuEooNKBd8jAHav6sEm4v_ZvDfXPw3V_8TazKwOgD4Y-h0VUrFfgDDjn2F</addsrcrecordid><sourcetype>Open Website</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>2454644345</pqid></control><display><type>article</type><title>A Password-based Authentication System based on The CAPTCHA AI Problem</title><source>IEEE Open Access Journals</source><source>DOAJ Directory of Open Access Journals</source><source>Elektronische Zeitschriftenbibliothek - Frei zugängliche E-Journals</source><creator>Alajmi, Masoud ; Elashry, Ibrahim ; El-Sayed, Hala S. ; Faragallah, Osama S.</creator><creatorcontrib>Alajmi, Masoud ; Elashry, Ibrahim ; El-Sayed, Hala S. ; Faragallah, Osama S.</creatorcontrib><description>Powerful cryptographic systems based on mathematically hard problems are utilized to ensure tighter security for data communication purposes. However, these traditional cryptographic systems are bound to fail in the ensuing era of quantum computing. Thus, Artificial Intelligence (AI) inspired security methods are needed to secure communications in the era of quantum computing. This paper presents a challenge-response password-based authentication system based on the Completely Automated Public Turing test to tell Computers and Humans Apart (CAPTCHA) AI hard problem. In this system, a server sends a challenge text to a client, then the client generates a random image and blends the challenge text inside this random image using his password. Then the client sends the generated image to the server. The server extracts the challenge text from the sent image using his copy of the client's password. If the extracted challenge text is the same as the sent challenge text, then both the client's and the server's copies of the password match and the client is authenticated. The efficiency of the proposed system is analyzed and the outcomes prove that the proposed system is efficient in terms of time and space. Also, a security investigation of the proposed system is employed, and the results prove that the system is probabilistic and very sensitive to changes in its parameters. It does not leak any statistical information about the client's password and the generated images cannot be distinguished from random images. In addition, the security of the proposed system is analyzed against two possible attacks; the brute force attack and the replay attack and the results prove that the proposed system is immune to these attacks. Finally, the proposed system is ensured to be indistinguishably secure against an adaptive chosen-challenge text attack (IND-ACCTA), based on the CAPTCHA AI hard problem when the hash function H is modeled as a random oracle.</description><identifier>ISSN: 2169-3536</identifier><identifier>EISSN: 2169-3536</identifier><identifier>DOI: 10.1109/ACCESS.2020.3018659</identifier><identifier>CODEN: IAECCG</identifier><language>eng</language><publisher>Piscataway: IEEE</publisher><subject>Adaptive systems ; AI hard problems ; Artificial intelligence ; Authentication ; CAPTCHA ; Cryptography ; Data communication ; Logic ; Parameter sensitivity ; Password-based Authentication ; Passwords ; Quantum computing ; Security ; Servers ; Statistical analysis</subject><ispartof>IEEE access, 2020-01, Vol.8, p.1-1</ispartof><rights>Copyright The Institute of Electrical and Electronics Engineers, Inc. (IEEE) 2020</rights><lds50>peer_reviewed</lds50><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed><citedby>FETCH-LOGICAL-c408t-acb2ba9e85dc5ef8a43fcef052912c868531164791cdd158bf662a671760548e3</citedby><cites>FETCH-LOGICAL-c408t-acb2ba9e85dc5ef8a43fcef052912c868531164791cdd158bf662a671760548e3</cites><orcidid>0000-0002-1887-6719 ; 0000-0002-2776-783X ; 0000-0003-1982-335X ; 0000-0001-8947-2239</orcidid></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://ieeexplore.ieee.org/document/9173668$$EHTML$$P50$$Gieee$$Hfree_for_read</linktohtml><link.rule.ids>314,777,781,861,2096,27614,27905,27906,54914</link.rule.ids></links><search><creatorcontrib>Alajmi, Masoud</creatorcontrib><creatorcontrib>Elashry, Ibrahim</creatorcontrib><creatorcontrib>El-Sayed, Hala S.</creatorcontrib><creatorcontrib>Faragallah, Osama S.</creatorcontrib><title>A Password-based Authentication System based on The CAPTCHA AI Problem</title><title>IEEE access</title><addtitle>Access</addtitle><description>Powerful cryptographic systems based on mathematically hard problems are utilized to ensure tighter security for data communication purposes. However, these traditional cryptographic systems are bound to fail in the ensuing era of quantum computing. Thus, Artificial Intelligence (AI) inspired security methods are needed to secure communications in the era of quantum computing. This paper presents a challenge-response password-based authentication system based on the Completely Automated Public Turing test to tell Computers and Humans Apart (CAPTCHA) AI hard problem. In this system, a server sends a challenge text to a client, then the client generates a random image and blends the challenge text inside this random image using his password. Then the client sends the generated image to the server. The server extracts the challenge text from the sent image using his copy of the client's password. If the extracted challenge text is the same as the sent challenge text, then both the client's and the server's copies of the password match and the client is authenticated. The efficiency of the proposed system is analyzed and the outcomes prove that the proposed system is efficient in terms of time and space. Also, a security investigation of the proposed system is employed, and the results prove that the system is probabilistic and very sensitive to changes in its parameters. It does not leak any statistical information about the client's password and the generated images cannot be distinguished from random images. In addition, the security of the proposed system is analyzed against two possible attacks; the brute force attack and the replay attack and the results prove that the proposed system is immune to these attacks. Finally, the proposed system is ensured to be indistinguishably secure against an adaptive chosen-challenge text attack (IND-ACCTA), based on the CAPTCHA AI hard problem when the hash function H is modeled as a random oracle.</description><subject>Adaptive systems</subject><subject>AI hard problems</subject><subject>Artificial intelligence</subject><subject>Authentication</subject><subject>CAPTCHA</subject><subject>Cryptography</subject><subject>Data communication</subject><subject>Logic</subject><subject>Parameter sensitivity</subject><subject>Password-based Authentication</subject><subject>Passwords</subject><subject>Quantum computing</subject><subject>Security</subject><subject>Servers</subject><subject>Statistical analysis</subject><issn>2169-3536</issn><issn>2169-3536</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2020</creationdate><recordtype>article</recordtype><sourceid>ESBDL</sourceid><sourceid>RIE</sourceid><sourceid>DOA</sourceid><recordid>eNpNUF1rwjAUDWODDecv8KWw57p8N3ksRTdBmKB7Dml6OytqtqQy_PeLq4zdl_t1zrmXg9CE4CkhWD-XVTVbr6cUUzxlmCgp9A16oETqnAkmb__V92gc4w6nUGkkigc0L7OVjfHbhyavbYQmK0_9Fo5952zf-WO2PsceDtmwS_1mC1lVrjbVa5mVi2wVfL2HwyO6a-0-wviaR-h9PkuYfPn2sqjKZe44Vn1uXU1rq0GJxgloleWsddBiQTWhTkklGCGSF5q4piFC1a2U1MqCFBILroCN0GLQbbzdmc_QHWw4G2878zvw4cPYkH7fgykkw05oKyQwLjFTlGJSA1AoWqpIkbSeBq3P4L9OEHuz86dwTO8bygWXnDMuEooNKBd8jAHav6sEm4v_ZvDfXPw3V_8TazKwOgD4Y-h0VUrFfgDDjn2F</recordid><startdate>20200101</startdate><enddate>20200101</enddate><creator>Alajmi, Masoud</creator><creator>Elashry, Ibrahim</creator><creator>El-Sayed, Hala S.</creator><creator>Faragallah, Osama S.</creator><general>IEEE</general><general>The Institute of Electrical and Electronics Engineers, Inc. (IEEE)</general><scope>97E</scope><scope>ESBDL</scope><scope>RIA</scope><scope>RIE</scope><scope>AAYXX</scope><scope>CITATION</scope><scope>7SC</scope><scope>7SP</scope><scope>7SR</scope><scope>8BQ</scope><scope>8FD</scope><scope>JG9</scope><scope>JQ2</scope><scope>L7M</scope><scope>L~C</scope><scope>L~D</scope><scope>DOA</scope><orcidid>https://orcid.org/0000-0002-1887-6719</orcidid><orcidid>https://orcid.org/0000-0002-2776-783X</orcidid><orcidid>https://orcid.org/0000-0003-1982-335X</orcidid><orcidid>https://orcid.org/0000-0001-8947-2239</orcidid></search><sort><creationdate>20200101</creationdate><title>A Password-based Authentication System based on The CAPTCHA AI Problem</title><author>Alajmi, Masoud ; Elashry, Ibrahim ; El-Sayed, Hala S. ; Faragallah, Osama S.</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c408t-acb2ba9e85dc5ef8a43fcef052912c868531164791cdd158bf662a671760548e3</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2020</creationdate><topic>Adaptive systems</topic><topic>AI hard problems</topic><topic>Artificial intelligence</topic><topic>Authentication</topic><topic>CAPTCHA</topic><topic>Cryptography</topic><topic>Data communication</topic><topic>Logic</topic><topic>Parameter sensitivity</topic><topic>Password-based Authentication</topic><topic>Passwords</topic><topic>Quantum computing</topic><topic>Security</topic><topic>Servers</topic><topic>Statistical analysis</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Alajmi, Masoud</creatorcontrib><creatorcontrib>Elashry, Ibrahim</creatorcontrib><creatorcontrib>El-Sayed, Hala S.</creatorcontrib><creatorcontrib>Faragallah, Osama S.</creatorcontrib><collection>IEEE All-Society Periodicals Package (ASPP) 2005-present</collection><collection>IEEE Open Access Journals</collection><collection>IEEE All-Society Periodicals Package (ASPP) 1998-Present</collection><collection>IEEE Electronic Library (IEL)</collection><collection>CrossRef</collection><collection>Computer and Information Systems Abstracts</collection><collection>Electronics &amp; Communications Abstracts</collection><collection>Engineered Materials Abstracts</collection><collection>METADEX</collection><collection>Technology Research Database</collection><collection>Materials Research Database</collection><collection>ProQuest Computer Science Collection</collection><collection>Advanced Technologies Database with Aerospace</collection><collection>Computer and Information Systems Abstracts – Academic</collection><collection>Computer and Information Systems Abstracts Professional</collection><collection>DOAJ Directory of Open Access Journals</collection><jtitle>IEEE access</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Alajmi, Masoud</au><au>Elashry, Ibrahim</au><au>El-Sayed, Hala S.</au><au>Faragallah, Osama S.</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>A Password-based Authentication System based on The CAPTCHA AI Problem</atitle><jtitle>IEEE access</jtitle><stitle>Access</stitle><date>2020-01-01</date><risdate>2020</risdate><volume>8</volume><spage>1</spage><epage>1</epage><pages>1-1</pages><issn>2169-3536</issn><eissn>2169-3536</eissn><coden>IAECCG</coden><abstract>Powerful cryptographic systems based on mathematically hard problems are utilized to ensure tighter security for data communication purposes. However, these traditional cryptographic systems are bound to fail in the ensuing era of quantum computing. Thus, Artificial Intelligence (AI) inspired security methods are needed to secure communications in the era of quantum computing. This paper presents a challenge-response password-based authentication system based on the Completely Automated Public Turing test to tell Computers and Humans Apart (CAPTCHA) AI hard problem. In this system, a server sends a challenge text to a client, then the client generates a random image and blends the challenge text inside this random image using his password. Then the client sends the generated image to the server. The server extracts the challenge text from the sent image using his copy of the client's password. If the extracted challenge text is the same as the sent challenge text, then both the client's and the server's copies of the password match and the client is authenticated. The efficiency of the proposed system is analyzed and the outcomes prove that the proposed system is efficient in terms of time and space. Also, a security investigation of the proposed system is employed, and the results prove that the system is probabilistic and very sensitive to changes in its parameters. It does not leak any statistical information about the client's password and the generated images cannot be distinguished from random images. In addition, the security of the proposed system is analyzed against two possible attacks; the brute force attack and the replay attack and the results prove that the proposed system is immune to these attacks. Finally, the proposed system is ensured to be indistinguishably secure against an adaptive chosen-challenge text attack (IND-ACCTA), based on the CAPTCHA AI hard problem when the hash function H is modeled as a random oracle.</abstract><cop>Piscataway</cop><pub>IEEE</pub><doi>10.1109/ACCESS.2020.3018659</doi><tpages>1</tpages><orcidid>https://orcid.org/0000-0002-1887-6719</orcidid><orcidid>https://orcid.org/0000-0002-2776-783X</orcidid><orcidid>https://orcid.org/0000-0003-1982-335X</orcidid><orcidid>https://orcid.org/0000-0001-8947-2239</orcidid><oa>free_for_read</oa></addata></record>
fulltext fulltext
identifier ISSN: 2169-3536
ispartof IEEE access, 2020-01, Vol.8, p.1-1
issn 2169-3536
2169-3536
language eng
recordid cdi_ieee_primary_9173668
source IEEE Open Access Journals; DOAJ Directory of Open Access Journals; Elektronische Zeitschriftenbibliothek - Frei zugängliche E-Journals
subjects Adaptive systems
AI hard problems
Artificial intelligence
Authentication
CAPTCHA
Cryptography
Data communication
Logic
Parameter sensitivity
Password-based Authentication
Passwords
Quantum computing
Security
Servers
Statistical analysis
title A Password-based Authentication System based on The CAPTCHA AI Problem
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-20T19%3A36%3A12IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_ieee_&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=A%20Password-based%20Authentication%20System%20based%20on%20The%20CAPTCHA%20AI%20Problem&rft.jtitle=IEEE%20access&rft.au=Alajmi,%20Masoud&rft.date=2020-01-01&rft.volume=8&rft.spage=1&rft.epage=1&rft.pages=1-1&rft.issn=2169-3536&rft.eissn=2169-3536&rft.coden=IAECCG&rft_id=info:doi/10.1109/ACCESS.2020.3018659&rft_dat=%3Cproquest_ieee_%3E2454644345%3C/proquest_ieee_%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=2454644345&rft_id=info:pmid/&rft_ieee_id=9173668&rft_doaj_id=oai_doaj_org_article_7630c59a56e3460382201bee2e7f2817&rfr_iscdi=true