Sciweavers

CCS
2006
ACM

Fortifying password authentication in integrated healthcare delivery systems

14 years 4 months ago
Fortifying password authentication in integrated healthcare delivery systems
Integrated Delivery Systems (IDSs) now become a primary means of care provision in healthcare domain. However, existing password systems (under either the single-server model or the multi-server model) do not provide adequate security when applied to IDSs. We are thus motivated to present a practical password authentication system built upon a novel two-server model. We generalize the two-server model to an architecture of a single control server supporting multiple service servers, tailored to the organizational structure of IDSs. The underlying user authentication and key exchange protocols we propose are password-only, neat, efficient, and robust against off-line dictionary attacks mounted by both servers. Categories and Subject Descriptors H.4 [Information Systems Applications]: Miscellaneous General Terms Security Keywords integrated delivery systems (IDSs), password system, user authentication and key exchange, dictionary attack.
Yanjiang Yang, Robert H. Deng, Feng Bao
Added 20 Aug 2010
Updated 20 Aug 2010
Type Conference
Year 2006
Where CCS
Authors Yanjiang Yang, Robert H. Deng, Feng Bao
Comments (0)