Open AccessZero-Knowledge Authentication
Author(s) -
Jakob Jakob Povšič,
Andrej Brodnik
Publication year - 2021
Language(s) - English
Resource type - Conference proceedings
DOI - 10.18690/978-961-286-516-0.2
Subject(s) - zero knowledge proof , password , mathematical proof , computer science , authentication (law) , computer security , challenge–response authentication , nothing , authentication protocol , s/key , cryptography , mathematics , philosophy , geometry , epistemology
Zero-Knowledge proofs (ZKPs) enable proving of mathematical statements, revealing nothing but their validity. We design an authentication sys-tem with a ZKP as a password verification mech-anism within the Extensible Authentication Pro-tocol (EAP) framework. Designing a secure pass-word authentication system requires us to adopt security practices for protecting ourselves against the vulnerabilities of passwords. Integrating said practices is not trivial because of the tight cou-pling with the password verification method.