Implementation of Password Guessing Resistant Protocol (PGRP) to Prevent Online Attacks?
Journal: International Journal of Computer Science and Mobile Computing - IJCSMC (Vol.3, No. 2)Publication Date: 2014-02-28
Authors : M.YUVARAJ A.R.BHARATHIDASAN N.KUMAR;
Page : 815-826
Keywords : Online Attacks; Brute force; ATT; PGRP;
Abstract
The inadequacy of login protocols designed to address large scale online dictionary attacks (e.g., from a botnet of hundreds of thousands of nodes). Brute force and dictionary attacks on password-only remote login services are now widespread and emerging technique. Convenient login for legitimate users while preventing such attacks is a difficult problem. Automated Turing Tests (ATTs) continue to be an effective, easy-to-deploy approach to identify automated malicious login attempts with reasonable cost of inconvenience to users. In this paper, we propose a protocol called Password Guessing Resistant Protocol (PGRP), derived upon revisiting recent proposals designed to avoid such attacks. In PGRP limits the total number of login attempts from unknown remote users to as low as a single attempt per username, the users in most cases (e.g., when attempts are made from known, frequently-used machines) can make multiple failed login attempts before being challenged with an ATT. We evaluate the performance of PGRP with two realworld data sets and find out more than the existing proposals.
Other Latest Articles
- ASPECTOS CELULARES E FISIOLÓGICOS DA BARREIRA HEMATOENCEFÁLICA
- PARCERIA DO ESTADO COM ONGS/AIDS: CRÍTICA AO PADRÃO EMERGENTE E INTERVENÇÃO SOCIAL
- EFEITOS DE TRÊS MÉTODOS COMPLEMENTARES À ASPIRAÇÃO NAS REPERCUSSÕES HEMODINÂMICAS E MECÂNICA RESPIRATÓRIA EM PACIENTES SOB VENTILAÇÃO MECÂNICA INVASIVA
- AMINO ACID SEQUENCE ANALYSIS OF THE TWO MAJOR OUTER CAPSID PROTEINS (VP7 AND VP4) FROM HUMAN-DERIVED CANINE G3P[3] ROTAVIRUS STRAIN DETECTED IN BRAZIL
- Neural Network Methodology for Embedded System Testing
Last modified: 2014-03-05 16:14:08