Research Article Open Access

Efficient Two Server Authentication and Verification Using ECC

Abstract

A Password Authenticated Key Exchange(PAKE) protocol is a cryptographic protocol that allows two parties client and server, who share knowledge of a password to mutually authenticate each other and establish a cryptographic keys by exchanging messages and without explicitly revealing the password. Generally storage of allpasswords necessary for authentication of clients is present in single server. But when such a server is compromised, a large number of client’s passwords are exposed at once. In such schemes, the capability of verifying a password is split among two or more servers. If any server is compromised, the attacker still cannot pretend to be the client and he/she cannot access the information from the compromised server. Current solutions for two-server PAKE are either symmetric in the sense that two peer servers equally contribute to the authentication or asymmetric in the sense that one server authenticates the client with the help of another server. In this paper, a symmetric solution for two-server PAKE, where when a user is registered as a client its related information of username & password will be forwarded to web server using web services where it will be encrypted using Diffie-Hellman key exchange and ECC algorithm and a public key is generated which will be notified to client for decryption purpose. The encrypted data is broken & distributed among no. of active servers of system which will be united if & only if trusted user is logged in for system. To maintain the privacy, system is also provided with two steps mobile based verification system by sending a random number to authentic user’s mobile.

Seema P. Nakhate, Prof. R. M. Goudar

To read the full article Download Full Article | Visit Full Article