Open AccessAn enhanced Kerberos protocol with non‐interactive zero‐knowledge proof
Author(s) -
Zhu Yuesheng,
Ma Limin,
Zhang Jinjiang
Publication year - 2015
Publication title -
security and communication networks
Language(s) - English
Resource type - Journals
SCImago Journal Rank - 0.446
H-Index - 43
eISSN - 1939-0122
pISSN - 1939-0114
DOI - 10.1002/sec.1066
Subject(s) - kerberos , computer science , authentication protocol , password , computer security , zero knowledge proof , authentication (law) , protocol (science) , challenge–response authentication , s/key , authentication server , cryptography , computer network , medicine , alternative medicine , pathology
As one of the most important trusted third‐party‐based authentication protocols, Kerberos is widely used to provide authentication service in distributed networks. However, it is vulnerable to common brute force password‐guessing attacks because of its password‐based mechanism. Some enhanced Kerberos protocols based on public key cryptography were proposed as solutions, but they require excessive computation and communication resources. In this paper, a new enhanced Kerberos protocol with non‐interactive zero‐knowledge proof is proposed, in which the clients and the authentication server can mutually authenticate each other without revealing any information during the authentication process. Our security analysis and experimental results have shown that the proposed scheme can resist password‐guessing attacks and is more convenient and efficient than previous schemes. Copyright © 2014 John Wiley & Sons, Ltd.