Paper Abstract and Keywords |
Presentation |
2014-07-04 10:15
On Hidden Credential Retrieval SeongHan Shin, Kazukuni Kobara (AIST) ISEC2014-32 SITE2014-27 ICSS2014-36 EMM2014-32 |
Abstract |
(in Japanese) |
(See Japanese page) |
(in English) |
Hidden Credential Retrieval (HCR) protocols are designed for access credentials management where users who remember short passwords can retrieve his/her various credentials (access keys and tokens) with the help of remote storage server over insecure networks (e.g., the Internet). In this paper, we revisit a HCR protocol (we call it B-HCR) based on Boldyreva's blind signature scheme. In particular, we show that the B-HCR protocol is insecure against an outside attacker who impersonates server S. Specifically, the attacker can find out the user's password pw with off-line dictionary attacks by eavesdropping the communications between the user and a third-party online service provider. And we discuss why Boyen's security model does not capture the attacks. |
Keyword |
(in Japanese) |
(See Japanese page) |
(in English) |
Credentials Management / Passwords / On-line/Off-line Dictionary Attacks / Insider/Outsider Attacks / / / / |
Reference Info. |
IEICE Tech. Rep., vol. 114, no. 115, ISEC2014-32, pp. 233-237, July 2014. |
Paper # |
ISEC2014-32 |
Date of Issue |
2014-06-26 (ISEC, SITE, ICSS, EMM) |
ISSN |
Print edition: ISSN 0913-5685 Online edition: ISSN 2432-6380 |
Copyright and reproduction |
All rights are reserved and no part of this publication may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopy, recording, or any information storage and retrieval system, without permission in writing from the publisher. Notwithstanding, instructors are permitted to photocopy isolated articles for noncommercial classroom use without fee. (License No.: 10GA0019/12GB0052/13GB0056/17GB0034/18GB0034) |
Download PDF |
ISEC2014-32 SITE2014-27 ICSS2014-36 EMM2014-32 |
Conference Information |
Committee |
ICSS ISEC SITE EMM IPSJ-CSEC IPSJ-SPT |
Conference Date |
2014-07-03 - 2014-07-04 |
Place (in Japanese) |
(See Japanese page) |
Place (in English) |
San-Refure Hakodate |
Topics (in Japanese) |
(See Japanese page) |
Topics (in English) |
Security |
Paper Information |
Registration To |
ISEC |
Conference Code |
2014-07-ICSS-ISEC-SITE-EMM-CSEC-SPT |
Language |
English (Japanese title is available) |
Title (in Japanese) |
(See Japanese page) |
Sub Title (in Japanese) |
(See Japanese page) |
Title (in English) |
On Hidden Credential Retrieval |
Sub Title (in English) |
|
Keyword(1) |
Credentials Management |
Keyword(2) |
Passwords |
Keyword(3) |
On-line/Off-line Dictionary Attacks |
Keyword(4) |
Insider/Outsider Attacks |
Keyword(5) |
|
Keyword(6) |
|
Keyword(7) |
|
Keyword(8) |
|
1st Author's Name |
SeongHan Shin |
1st Author's Affiliation |
National Institute of Advanced Industrial Science and Technology (AIST) |
2nd Author's Name |
Kazukuni Kobara |
2nd Author's Affiliation |
National Institute of Advanced Industrial Science and Technology (AIST) |
3rd Author's Name |
|
3rd Author's Affiliation |
() |
4th Author's Name |
|
4th Author's Affiliation |
() |
5th Author's Name |
|
5th Author's Affiliation |
() |
6th Author's Name |
|
6th Author's Affiliation |
() |
7th Author's Name |
|
7th Author's Affiliation |
() |
8th Author's Name |
|
8th Author's Affiliation |
() |
9th Author's Name |
|
9th Author's Affiliation |
() |
10th Author's Name |
|
10th Author's Affiliation |
() |
11th Author's Name |
|
11th Author's Affiliation |
() |
12th Author's Name |
|
12th Author's Affiliation |
() |
13th Author's Name |
|
13th Author's Affiliation |
() |
14th Author's Name |
|
14th Author's Affiliation |
() |
15th Author's Name |
|
15th Author's Affiliation |
() |
16th Author's Name |
|
16th Author's Affiliation |
() |
17th Author's Name |
|
17th Author's Affiliation |
() |
18th Author's Name |
|
18th Author's Affiliation |
() |
19th Author's Name |
|
19th Author's Affiliation |
() |
20th Author's Name |
|
20th Author's Affiliation |
() |
Speaker |
Author-1 |
Date Time |
2014-07-04 10:15:00 |
Presentation Time |
25 minutes |
Registration for |
ISEC |
Paper # |
ISEC2014-32, SITE2014-27, ICSS2014-36, EMM2014-32 |
Volume (vol) |
vol.114 |
Number (no) |
no.115(ISEC), no.116(SITE), no.117(ICSS), no.118(EMM) |
Page |
pp.233-237 |
#Pages |
5 |
Date of Issue |
2014-06-26 (ISEC, SITE, ICSS, EMM) |
|