The Request for Better Measurement: A Comparative Evaluation of Two-Factor Authentication Schemes | |
Wang, Ding ; Gu, Qianchen ; Cheng, Haibo ; Wang, Ping | |
2016 | |
关键词 | Two-factor authentication Smart card loss attack Two-factor security De-synchronization attack Measurement MEDICINE INFORMATION-SYSTEMS SMART-CARDS PASSWORD AUTHENTICATION USER AUTHENTICATION ROBUST PROTOCOL ANONYMITY NETWORKS |
英文摘要 | Despite over two decades of continuous efforts, how to design a secure and efficient two-factor authentication scheme remains an open issue. Hundreds of new schemes have wave upon wave been proposed, yet most of them are shortly found unable to achieve some important security goals (e.g., truly two-factor security) and desirable properties (e.g., user anonymity), falling into the unsatisfactory "break-fix-break-fix" cycle. In this vicious cycle, protocol designers often advocate the superiorities of their improved scheme, but do not illustrate (or unconsciously overlooking) the aspects on which their scheme performs poorly. In this paper, we first use a series of "improved schemes" over Xu et al.' s 2009 scheme as case studies to highlight that, if there are no improved measurements, more "improved schemes" generally would not mean more advancements. To figure out why the measurement of existing schemes is invariably insufficient, we further investigate into the state-of-the-art evaluation criteria set (i.e., Madhusudhan-Mittal's set). Besides reporting its ambiguities and redundancies, we propose viable fixes and refinements. To our knowledge, we for the first time show that there are at least seven different attacking scenarios that may lead to the failure of a scheme in achieving truly two-factor security. Finally, we conduct a large-scale comparative evaluation of 26 representative two-factor schemes, and our results outline the request for better measurement when assessing new schemes.; EI; CPCI-S(ISTP); wangdingg@pku.edu.cn; qcgu@pku.edu.cn; chenghaibo@pku.edu.cn; pwang@pku.edu.cn; 475-486 |
语种 | 英语 |
出处 | 11th ACM Asia Conference on Computer and Communications Security (ASIA CCS) |
DOI标识 | 10.1145/2897845.2897916 |
内容类型 | 其他 |
源URL | [http://ir.pku.edu.cn/handle/20.500.11897/449471] |
专题 | 信息科学技术学院 |
推荐引用方式 GB/T 7714 | Wang, Ding,Gu, Qianchen,Cheng, Haibo,et al. The Request for Better Measurement: A Comparative Evaluation of Two-Factor Authentication Schemes. 2016-01-01. |
个性服务 |
查看访问统计 |
相关权益政策 |
暂无数据 |
收藏/分享 |
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。
修改评论