Multiple hashes of single key with passcode for multiple accounts
A human's e-life needs multiple offline and online accounts. It is a balance between usability and security to set keys or passwords for these multiple accounts. Password reuse has to be avoided due to the domino effect of malicious administrators and crackers. However, human memorability const...
| Main Authors: | , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
ZHEJIANG UNIV, EDITORIAL BOARD
2007
|
| Subjects: | |
| Online Access: | http://shdl.mmu.edu.my/3028/ http://shdl.mmu.edu.my/3028/1/1053.pdf |
| _version_ | 1848790214724550656 |
|---|---|
| author | Lee, Kok-wah Ewe, Hong-tat |
| author_facet | Lee, Kok-wah Ewe, Hong-tat |
| author_sort | Lee, Kok-wah |
| building | MMU Institutional Repository |
| collection | Online Access |
| description | A human's e-life needs multiple offline and online accounts. It is a balance between usability and security to set keys or passwords for these multiple accounts. Password reuse has to be avoided due to the domino effect of malicious administrators and crackers. However, human memorability constrains the number of keys. Single sign-on server, key hashing, key strengthening and petname system are used in the prior arts to use only one key for multiple online accounts. The unique site keys are derived from the common master secret and specific domain name. These methods cannot be applied to offline accounts such as file encryption. We invent a new method and system applicable to offline and online accounts. It does not depend on HTTP server and domain name, but numeric 4-digit passcode, key hashing, key strengthening and hash truncation. Domain name is only needed to resist spoofing and phishing attacks of online accounts. |
| first_indexed | 2025-11-14T18:09:04Z |
| format | Article |
| id | mmu-3028 |
| institution | Multimedia University |
| institution_category | Local University |
| language | English |
| last_indexed | 2025-11-14T18:09:04Z |
| publishDate | 2007 |
| publisher | ZHEJIANG UNIV, EDITORIAL BOARD |
| recordtype | eprints |
| repository_type | Digital Repository |
| spelling | mmu-30282014-02-25T03:10:29Z http://shdl.mmu.edu.my/3028/ Multiple hashes of single key with passcode for multiple accounts Lee, Kok-wah Ewe, Hong-tat T Technology (General) QA75.5-76.95 Electronic computers. Computer science A human's e-life needs multiple offline and online accounts. It is a balance between usability and security to set keys or passwords for these multiple accounts. Password reuse has to be avoided due to the domino effect of malicious administrators and crackers. However, human memorability constrains the number of keys. Single sign-on server, key hashing, key strengthening and petname system are used in the prior arts to use only one key for multiple online accounts. The unique site keys are derived from the common master secret and specific domain name. These methods cannot be applied to offline accounts such as file encryption. We invent a new method and system applicable to offline and online accounts. It does not depend on HTTP server and domain name, but numeric 4-digit passcode, key hashing, key strengthening and hash truncation. Domain name is only needed to resist spoofing and phishing attacks of online accounts. ZHEJIANG UNIV, EDITORIAL BOARD 2007-08 Article NonPeerReviewed text en http://shdl.mmu.edu.my/3028/1/1053.pdf Lee, Kok-wah and Ewe, Hong-tat (2007) Multiple hashes of single key with passcode for multiple accounts. Journal of Zhejiang University SCIENCE A, 8 (8). pp. 1183-1190. ISSN 1673-565X http://dx.doi.org/10.1631/jzus.2007.A1183 doi:10.1631/jzus.2007.A1183 doi:10.1631/jzus.2007.A1183 |
| spellingShingle | T Technology (General) QA75.5-76.95 Electronic computers. Computer science Lee, Kok-wah Ewe, Hong-tat Multiple hashes of single key with passcode for multiple accounts |
| title | Multiple hashes of single key with passcode for multiple accounts |
| title_full | Multiple hashes of single key with passcode for multiple accounts |
| title_fullStr | Multiple hashes of single key with passcode for multiple accounts |
| title_full_unstemmed | Multiple hashes of single key with passcode for multiple accounts |
| title_short | Multiple hashes of single key with passcode for multiple accounts |
| title_sort | multiple hashes of single key with passcode for multiple accounts |
| topic | T Technology (General) QA75.5-76.95 Electronic computers. Computer science |
| url | http://shdl.mmu.edu.my/3028/ http://shdl.mmu.edu.my/3028/ http://shdl.mmu.edu.my/3028/ http://shdl.mmu.edu.my/3028/1/1053.pdf |