Path: utzoo!attcan!uunet!lll-winken!ames!ncar!boulder!sunybcs!rutgers!att!cuuxb!dlm From: dlm@cuuxb.ATT.COM (Dennis L. Mumaugh) Newsgroups: comp.unix.wizards Subject: Re: Password security - Another idea Summary: pass functions have problems but challenger pairs are good Keywords: passwords, security Message-ID: <2361@cuuxb.ATT.COM> Date: 10 Jan 89 00:36:19 GMT References: <228@sea375.UUCP> <4497@xenna.Encore.COM> <4537@xenna.Encore.COM> <4547@xenna.Encore.COM> <2338@cuuxb.ATT.COM> <900@eta.unix.ETA.COM> Reply-To: dlm@cuuxb.UUCP (Dennis L. Mumaugh) Organization: ATT Data Systems Group, Lisle, Ill. Lines: 52 In article <900@eta.unix.ETA.COM> bstrand@woods.unix.eta.com (Brad Strand) writes: >The recent discussions regarding Unix password security (and the lack >thereof) got me wondering about other authentification schemes. One >such scheme that I haven't seen mentioned here, is replacing the password >with a 'pass-function'. By that I mean that instead of having a >password such as "xyzzy", each user would have his/her own personal >function F, perhaps like > > F(C) = 4C + 3 > >The idea would be for the system to replace the "password:" prompt >with a prompt more like, "How about C?", where C is some reasonably >small (maybe 16-bit) random "Challenge" number generated by the system. >The user must then apply his/her pass-function to this particular C, >and enter the resulting F(C). Your idea is good except that most of the users will be mathematically illiterate. Hence their choice of function will be rather limited. A better ideas I have heard of a long time ago was that of challenge response using a sequence of words pre-established by the user: Computer: mumble You: zark Then: Computer: hurkle You: twongly After exhausting the challenges: Computer: mumble You: quark The major problem is that the list of challenge/response groups must be kept, and the computer has to remember each response for the last challenge. And whether for a given challenge what the correct response out of many it should be. Of course human factors being what they are most people won't remember which of the responses the challenge wants next so we have to accept any of the valid, but a monitor or person watching your typing may figure out what's going on soon enough. Thus the /etc/shadow might be: dlm:mumble;zark,quark,feeble/hurkle;twongly,ungly/snark;agony,fit: Of course one should still encrypt and hide the file. -- =Dennis L. Mumaugh Lisle, IL ...!{att,lll-crg}!cuuxb!dlm OR cuuxb!dlm@arpa.att.com