Author(s): Gagan Dua | Nitin Gautam | Dharmendar Sharma | Ankit Arora
Journal: International Journal of Computer Networks & Communications
ISSN 0975-2293
Volume: 5;
Issue: 2;
Start page: 59;
Date: 2013;
VIEW PDF
DOWNLOAD PDF 
Original page
Keywords: Kerberos Protocol | Password Attack | Authentication Server | Replay Attack | Ticket Granting Server | Application Server
ABSTRACT
Replay attack and password attacks are serious issues in the Kerberos authentication protocol. Many ideashave been proposed to prevent these attacks but they increase complexity of the total Kerberosenvironment. In this paper we present an improved method which prevents replay attacks and passwordattacks by using Triple password scheme. Three passwords are stored on Authentication Server andAuthentication Server sends two passwords to Ticket Granting Server (one for Application Server) byencrypting with the secret key shared between Authentication server and Ticket Granting server. Similarly,Ticket Granting Server sends one password to Application Server by encrypting with the secret key sharedbetween TGS and application server. Meanwhile, Service-Granting-Ticket is transferred to users byencrypting it with the password that TGS just received from AS. It helps to prevent Replay attack.
Journal: International Journal of Computer Networks & Communications
ISSN 0975-2293
Volume: 5;
Issue: 2;
Start page: 59;
Date: 2013;
VIEW PDF
DOWNLOAD PDF Original pageKeywords: Kerberos Protocol | Password Attack | Authentication Server | Replay Attack | Ticket Granting Server | Application Server
ABSTRACT
Replay attack and password attacks are serious issues in the Kerberos authentication protocol. Many ideashave been proposed to prevent these attacks but they increase complexity of the total Kerberosenvironment. In this paper we present an improved method which prevents replay attacks and passwordattacks by using Triple password scheme. Three passwords are stored on Authentication Server andAuthentication Server sends two passwords to Ticket Granting Server (one for Application Server) byencrypting with the secret key shared between Authentication server and Ticket Granting server. Similarly,Ticket Granting Server sends one password to Application Server by encrypting with the secret key sharedbetween TGS and application server. Meanwhile, Service-Granting-Ticket is transferred to users byencrypting it with the password that TGS just received from AS. It helps to prevent Replay attack.
