On time-memory trade-offs for password hashing schemes

Saran, Ayse Nurdan

doi:10.3389/fcomp.2024.1368362

Front. Comput. Sci.

2024

DOI: 10.3389/fcomp.2024.1368362

|View full text |Cite

On time-memory trade-offs for password hashing schemes

Ayse Nurdan Saran

Abstract: A password hashing algorithm is a cryptographic method that transforms passwords into a secure and irreversible format. It is used not only for authentication purposes but also for key derivation mechanisms. The primary purpose of password hashing is to enhance the security of user credentials by preventing the exposure of plaintext passwords in the event of a data breach. As a key derivation function, password hashing aims to derive secret keys from a master key, password, or passphrase using a pseudorandom f… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...

Citation Types

Supporting

Mentioning

Contrasting

Year Published

2024

Publication Types

Select...

Article1

Relationship

Self Cite0

Independent1

Authors

Journals

Cited by 1 publication

References 40 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

Key derivation function: key-hash based computational extractor and stream based pseudorandom expander

Chuah,

Harun,

Hamid

2024

PeerJ Computer Science

View full text Add to dashboard Cite

The key derivation function is a specific cryptographic algorithm that transforms private string and public strings into one or more cryptographic keys. The cryptographic keys are essential for protecting electronic data during transmission on the internet. This function is designed based on a computational extractor and pseudorandom expander and is typically constructed using various cryptography ciphers such as stream ciphers, keyed-hash message authentication codes, and block ciphers. Having secure and efficient key derivation function designs is essential in the development of numerous security systems. A vulnerable key derivation function could potentially give attackers the ability to compromise an otherwise secure cryptosystem. This research proposes a different approach by combining two different cryptography ciphers to develop key derivation functions. The findings demonstrate that a computational extractor utilizing keyed-hash message authentication codes and a pseudorandom expander using stream ciphers maintain the highest level of security while also providing efficiency benefits in terms of execution time compared to existing key derivation function schemes.

show abstract

Key derivation function: key-hash based computational extractor and stream based pseudorandom expander

Chuah,

Harun,

Hamid

2024

PeerJ Computer Science

View full text Add to dashboard Cite

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

On time-memory trade-offs for password hashing schemes

Cited by 1 publication

References 40 publications

Key derivation function: key-hash based computational extractor and stream based pseudorandom expander

Key derivation function: key-hash based computational extractor and stream based pseudorandom expander

Contact Info

Product

Resources

About