Skip to main content
SpringerLink
Log in

Sausage-Style One-Time Authentication Schemes

  • Conference paper
  • First Online:
Advances on Broad-Band Wireless Computing, Communication and Applications (BWCCA 2017)

Part of the book series: Lecture Notes on Data Engineering and Communications Technologies ((LNDECT,volume 12))

  • 1007 Accesses

Abstract

This paper proposes Sausage-style new kind of one-time password schemes and describes their applications. A proposal is an extension of the Lamport-like scheme and has an advantage that we could send data from the client (prover) to the server (verifier) while authentication phase. The proposal uses jointed hash chain with Merkle tree and L-divided tree (including binary tree), this kind of jointed tree seems the casing (wrapper), so we call the proposals Sausage-style one-time password schemes. We assume that the hash function has only one-way feature, so we can use dedicated cryptographic hash function such as SHA-2/3, this means that we do not need the trapdoors in the hash function, so we realize efficient implementations.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 169.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 219.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. NIST Special Publication 800-63-3: Digital Identity Guidelines. http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-63-3.pdf

  2. ITU-T Recommendation X.509—ISO/IEC 9594-8: Information Technology - Open Systems Interconnection - The Directory: Public-key and attribute certificate frameworks (2016)

    Google Scholar 

  3. Lamport, L.: Password authentication with insecure communication. Commun. ACM 24(11), 770–772 (1981)

    Article  MathSciNet  Google Scholar 

  4. Haller, N.: The S/KEY One-Time Password System. http://tools.ietf.org/html/rfc1760

  5. Haller, N., et al.: A One-Time Password System. http://tools.ietf.org/html/rfc2289.pdf (In Japanese)

  6. IIJ: Internet Infrastructure Review, vol. 25, 1.4.3. The Status of List-Based Attacks and Their Countermeasures. https://www.iij.ad.jp/en/company/development/iir/pdf/iir_vol25_infra_EN.pdf

  7. OASIS: eXtensible Access Control Markup Language3 (XACML) Version 2.0 (2005). http://docs.oasis-open.org/xacml/2.0/access_control-xacml-2.0-corespec-os.pdf

  8. Ferraiolo, D., Kuhn, R.: Role-based access controls. In: Proceedings of the 15th National Computer Security Conference (1992). http://csrc.nist.gov/rbac

  9. NIST: Attribute Based Access Control (ABAC) Overview. http://csrc.nist.gov/projects/abac/

  10. Merkle, R.: Secrecy, authentication and public key systems/A certified digital signature. Ph.D. dissertation, Department of Electrical Engineering, Stanford University (1979)

    Google Scholar 

  11. Szydlo, M.: Merkle tree traversal in log space and time. In: EUROCRYPT 2004 (2004)

    Google Scholar 

  12. National Police Agency: Status of Incidents of Illegal Remittance Related to Internet Banking in 2014, February 2015. http://www.npa.go.jp/cyber/pdf/H270212_banking.pdf. (in Japanese)

  13. Trend Micro Security Blog: Analyzing digital certificate theft attacks targeting corporate net banking. http://blog.trendmicro.co.jp/archives/9417

  14. About the FIDO Alliance. https://fidoalliance.org/about/overview/

  15. OASIS: Security Assertion Markup Language (SAML). http://xml.coverpages.org/saml.html

  16. OpenID Foundation: OpenID specifications. http://openid.net/developers/specs/

  17. Hardt, D.: The OAuth 2.0 Authorization Framework. http://tools.ietf.org/html/rfc6749

Download references

Author information

Authors and Affiliations

  1. Internet Initiative Japan Inc., Iidabashi Grand Bloom, 2-10-2 Fujimi, Chiyoda-ku, 102-0071, Japan

    Yuji Suga

Authors
  1. Yuji Suga
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Yuji Suga .

Editor information

Editors and Affiliations

  1. Faculty of Information Engineering, Department of Information and Communication Engineering, Fukuoka Institute of Technology, Fukuoka, Japan

    Leonard Barolli

  2. Technical University of Catalonia, Barcelona, Spain

    Fatos Xhafa

  3. Open University of Catalonia, Barcelona, Spain

    Jordi Conesa

Rights and permissions

Reprints and permissions

Copyright information

© 2018 Springer International Publishing AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Suga, Y. (2018). Sausage-Style One-Time Authentication Schemes. In: Barolli, L., Xhafa, F., Conesa, J. (eds) Advances on Broad-Band Wireless Computing, Communication and Applications. BWCCA 2017. Lecture Notes on Data Engineering and Communications Technologies, vol 12. Springer, Cham. https://doi.org/10.1007/978-3-319-69811-3_59

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-69811-3_59

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-69810-6

  • Online ISBN: 978-3-319-69811-3

  • eBook Packages: EngineeringEngineering (R0)

Publish with us

Policies and ethics

Search

Navigation