An attack on the Interlock Protocol when used for authentication

An attack on the Interlock Protocol when used for authentication

Exponential key exchange may be used to establish secure communications between two parties who do not share a private key. It fails in the presence of an active wiretap, however. Davies and Price suggest the use of Shamir and Rivest's "Interlock Protocol" to surmount this difficulty....

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE transactions on information theory 1994-01, Vol.40 (1), p.273-275
Hauptverfasser: Bellovin, S.M., Merritt, M.
Format: Artikel
Sprache:eng
Schlagworte:
Applied sciences
Authentication
Computer science
Cryptography
Decoding
Exact sciences and technology
Information, signal and communications theory
Lattices
Linear code
Protocols
Public key cryptography
Security
Signal and communications theory
Telecommunications and information theory
Vectors
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Exponential key exchange may be used to establish secure communications between two parties who do not share a private key. It fails in the presence of an active wiretap, however. Davies and Price suggest the use of Shamir and Rivest's "Interlock Protocol" to surmount this difficulty. The authors demonstrate that an active attacker can, at the cost of a timeout alarm, bypass the passwork exchange, and capture the passwords used. Furthermore, if the attack is from a terminal or workstation attempting to contact a computer, the attacker will have access before any alarm can be sounded.< >
ISSN:0018-9448
1557-9654
DOI:10.1109/18.272497