Skip to Main Content

IEEE.org| IEEE Xplore Digital Library| IEEE Standards| IEEE Spectrum| More Sites

Cart (Loading....) | Create Account | Sign In

Author Search^beta | Advanced Search | Preferences | | More Search Options

Browse Conference Publications > Network and Information Syste ...

Using the HMAC-Based One-Time Password Algorithm for TLS Authentication

Full Text Sign-In or Purchase

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Username

Password

Purchase PDF
Other Formats

Formats	Non-Member	Member
PDF	$31	$13

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

Already Purchased? View Article
Subscription Options Learn More

4 Author(s)

Hamdane, B. ; Sup''Com Cite Technol. des Commun., Ariana, Tunisia ; Serhrouchni, A. ; Montfaucon, A. ; Guemara, S.

Transport Layer Security (TLS) constitutes the main protocol used to secure the exchanges in the Internet. Indeed, this protocol assures the server authentication based generally on public key certificates but the client authentication is rarely required and if it is assured, its identity is sent in clear text. In this paper, we propose TLS-HOTP protocol, an extension to TLS to provide client authentication based on pre-shared keys (PSK) using the HMAC-Based One-Time Password (HOTP) algorithm. These pre-shared keys are symmetric keys, but the client's key is stored in a secure token, ensuring its mobility. The extension also provides client identity protection to ensure the protection of client credentials. In order to analyze the security of TLS-HOTP, we provide a formal validation of the protocols security goal achievement.

Published in:
Network and Information Systems Security (SAR-SSI), 2011 Conference on

Date of Conference: 18-21 May 2011

Page(s):: 1 - 8
Print ISBN:: 978-1-4577-0735-3
INSPEC Accession Number:: 12130958

Conference Location :: La Rochelle
Digital Object Identifier :: 10.1109/SAR-SSI.2011.5931396
Product Type:: Conference Publications

Author(s)

Hamdane, B.
Sup''Com Cite Technol. des Commun., Ariana, Tunisia
Serhrouchni, A. ; Montfaucon, A. ; Guemara, S.

INSPEC: CONTROLLED INDEXING

Internet

authorisation

computer network security

cryptographic protocols

message authentication

public key cryptography

INSPEC: NON CONTROLLED INDEXING

HMAC-based one-time password algorithm

Internet

TLS authentication

TLS-HOTP protocol

authentication protocol

client authentication

client identity protection

pre-shared keys

public key certificates

transport layer security

IEEE TERMS

Authentication

Protocols

Public key

Radiation detectors

Servers

Synchronization

Referenced Items are not available for this document.

No versions found for this document.

Standards Dictionary Terms are available to subscribers only.

| Create Account

IEEE Account

Purchase Details

Profile Information

Need Help?

US & Canada: +1 800 678 4333
Worldwide: +1 732 981 0060
Contact & Support

IEEE Advancing Technology for Humanity

About IEEE Xplore | Contact | Help | Terms of Use | Nondiscrimination Policy | Site Map | Privacy & Opting Out of Cookies

A not-for-profit organization, IEEE is the world's largest professional association for the advancement of technology.
© Copyright 2013 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.