Preview

User

Not a user? Register with this site Forgot your password?

Informatics

Advanced search

Stability of password authentication in infocommunication networks

https://doi.org/10.37661/1816-0301-2020-17-3-64-71

Abstract

The article discusses distributed infocommunication networks, in which the interaction of users, application servers and databases is carried out. When accessing an infocommunication network, the first procedure is to authenticate the agents through their authentication by password mechanism. It is shown that for social networks with a large number of users, widely used assessment of the security of password systems based on the calculation of the determination probability is not sufficient. The probability of the same passwords for two users with a password length of 6, 7 and 8 characters with alphabet size of 36, 42 and 57 characters and the number of users no more than 10 million is shown. An assessment of the strength of password authentication systems for info-communication networks based on the "birthday paradox" criterion is given. It has been determined that well-known social networks with a number of users comparable to the number of passwords used are not resistant to "birthday attacks". It is shown that for such systems the resistance of the password system to cracking should be assessed by  m=An/2      criterion.

About the Authors

M. N. Bobov
Belarusian State University of Informatics and Radioelectronics
Belarus

Mikhail N. Bobov, Dr. Sci. (Eng.), Professor

Minsk


A. V. Kurylovich
Belarusian State University of Informatics and Radioelectronics
Belarus

Andrei V. Kurylovich, Senior Lecturer of the Department of Infocommunication Technologies

Minsk


References

1. Bobov M. N., Konopelko V. K. Osnovy autentifikatsii v telekommunikatsionnykh sistemakh. Basics of Authentication in Telecommunication Systems. Minsk, Belorusskij gosudarstvennyj universitet informatiki i radiojelektroniki, 2008, 130 p. (in Russian).

2. Smith R. E. Authentication: from Passwords to Public Keys. Boston, Addison Wesley, 2002, 549 р.

3. Kharin Y. S., Bernik V. I., Matveyev G. V., Agiyevich S. V. Matematicheskiye i komp'yuternyye osnovy kriptologii. Mathematical and Computer Foundations of Cryptology. Minsk, Novoye znaniye, 2003, 382 p. (in Russian).

4. Mao W. Modern Cryptography: Theory and Practice. New Jersey, Prentice Hall PTR, 2003, 648 p.


Review

For citations:

Bobov M.N., Kurylovich A.V. Stability of password authentication in infocommunication networks. Informatics. 2020;17(3):64-71. (In Russ.) https://doi.org/10.37661/1816-0301-2020-17-3-64-71

Views: 599


Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 License.


ISSN 1816-0301 (Print)
ISSN 2617-6963 (Online)

220012, Minsk, Surganov Str 6.
The United Institute of Informatics Problems
of the National Academy of Sciences of Belarus
(UIIP NASB)
e-mail: rio@newman.bas-net.by

supported by NEICON (Elpub lab)