Abstract
One-time password (OTP) typically provides a better security protection than static password. However, a hindrance to consumer experience is the OTP manageability: users may need to store many secret values when they use OTP for authentication of distinct websites. In this paper, we extend the password generator technique to add the manageability to OTP authentication while retaining the computation and communication efficiency. Under the proposed scheme, a user, memorizing one password, can perform OTP authentication with various websites. Furthermore, the manageability for authentication servers is also improved, as the proposed scheme enables servers to infer the security status of client devices based on the received one-time passwords.
Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
