Title

Fortifying Password Authentication in Integrated Healthcare Delivery Systems

Publication Type

Conference Proceeding Article

Publication Date

3-2006

Abstract

Integrated Delivery Systems (IDSs) now become a primary means of care provision in healthcare domain. However, existing password systems (under either the single-server model or the multi-server model) do not provide adequate security when applied to IDSs. We are thus motivated to present a practical password authentication system built upon a novel two-server model. We generalize the two-server model to an architecture of a single control server supporting multiple service servers, tailored to the organizational structure of IDSs. The underlying user authentication and key exchange protocols we propose are password-only, neat, efficient, and robust against off-line dictionary attacks mounted by both servers.

Discipline

Information Security

Research Areas

Information Security and Trust

Publication

Proceedings of the 2006 ACM Symposium on Information, Computer and Communications Security: 2006, Taipei, Taiwan, 21-24 March

First Page

255

Last Page

265

ISBN

9781595932723

Identifier

10.1145/1128817.1128855

Publisher

ACM

City or Country

Taipei, Taiwan

Additional URL

http://dx.doi.org/10.1145/1128817.1128855