Open Access Open Access  Restricted Access Subscription Access

Effective and Efficient Approach to Web Accounts Management and Authentication Minimizing Password Compromise Risk and Possible Loss

Hung-Yu Chien,
Wei Sheng Lin,
Chun Yi Lin,
Shu Chun Juan,
Yun Zhen Ku,
Shu Hua Wang,

Abstract


Using distinct and high-entropy passwords in different accounts is a good principle for security, but it is very inconvenient or even impractical for many users because it is very difficult for people to memorize several distinct, high-entropy passwords. Therefore, despite the high risks, many users are still apt to use simple passwords or even a single password in many accounts for its convenience. Contrary to the conventional inconvenient approach that requires users memorize high-entropy passwords and periodically change them, this paper proposes and implements a new approach to managing the password accounts so as to minimize the possible password- compromise risk and the loss caused by compromised passwords while keeping the convenience and the scalability. This approach well integrates with existing systems and incurs only minimum cost.

Keywords


network security; web authentication; java card; plug-in; social engineering; risk management

Citation Format:
Hung-Yu Chien, Wei Sheng Lin, Chun Yi Lin, Shu Chun Juan, Yun Zhen Ku, Shu Hua Wang, "Effective and Efficient Approach to Web Accounts Management and Authentication Minimizing Password Compromise Risk and Possible Loss," Journal of Internet Technology, vol. 8, no. 3 , pp. 345-349, Jul. 2007.

Full Text:

PDF

Refbacks

  • There are currently no refbacks.




Published by Executive Committee, Taiwan Academic Network, Ministry of Education, Taipei, Taiwan, R.O.C
JIT Editorial Office, Office of Library and Information Services, National Dong Hwa University
No. 1, Sec. 2, Da Hsueh Rd., Shoufeng, Hualien 974301, Taiwan, R.O.C.
Tel: +886-3-931-7314  E-mail: jit.editorial@gmail.com