{"id":"https://openalex.org/W3038902377","doi":"https://doi.org/10.3233/jcs-181131","title":"Per-session security: Password-based cryptography revisited","display_name":"Per-session security: Password-based cryptography revisited","publication_year":2018,"publication_date":"2018-09-10","ids":{"openalex":"https://openalex.org/W3038902377","doi":"https://doi.org/10.3233/jcs-181131","mag":"3038902377"},"language":"en","primary_location":{"id":"doi:10.3233/jcs-181131","is_oa":false,"landing_page_url":"https://doi.org/10.3233/jcs-181131","pdf_url":null,"source":{"id":"https://openalex.org/S106992369","display_name":"Journal of Computer Security","issn_l":"0926-227X","issn":["0926-227X","1875-8924"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310318577","host_organization_name":"IOS Press","host_organization_lineage":["https://openalex.org/P4310318577"],"host_organization_lineage_names":["IOS Press"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Computer Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5053315559","display_name":"Gr\u00e9gory Demay","orcid":null},"institutions":[{"id":"https://openalex.org/I4210144191","display_name":"MOR Informatik (Switzerland)","ror":"https://ror.org/04e9p5d56","country_code":"CH","type":"company","lineage":["https://openalex.org/I4210144191"]}],"countries":["CH"],"is_corresponding":true,"raw_author_name":"Gr\u00e9gory Demay","raw_affiliation_strings":["Ergon Informatik AG, Z\u00fcrich, Switzerland. E-mail:\u00a0","Ergon Informatik AG, Z\u00fcrich, Switzerland. E-mail:\u00a0gregory.demay@ergon.ch"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Ergon Informatik AG, Z\u00fcrich, Switzerland. E-mail:\u00a0","institution_ids":["https://openalex.org/I4210144191"]},{"raw_affiliation_string":"Ergon Informatik AG, Z\u00fcrich, Switzerland. E-mail:\u00a0gregory.demay@ergon.ch","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5051578427","display_name":"Peter Ga\u017ei","orcid":"https://orcid.org/0000-0003-1572-3255"},"institutions":[{"id":"https://openalex.org/I4210107426","display_name":"E I L (China)","ror":"https://ror.org/01nfhmh79","country_code":"CN","type":"company","lineage":["https://openalex.org/I4210107426"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Peter Ga\u017ei","raw_affiliation_strings":["IOHK Research, Hong Kong. E-mail:\u00a0","IOHK Research, Hong Kong. E-mail:\u00a0peter.gazi@iohk.io"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"IOHK Research, Hong Kong. E-mail:\u00a0","institution_ids":["https://openalex.org/I4210107426"]},{"raw_affiliation_string":"IOHK Research, Hong Kong. E-mail:\u00a0peter.gazi@iohk.io","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5064085132","display_name":"Ueli Maurer","orcid":null},"institutions":[{"id":"https://openalex.org/I35440088","display_name":"ETH Zurich","ror":"https://ror.org/05a28rw58","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I35440088"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Ueli Maurer","raw_affiliation_strings":["Department of Computer Science, ETH Z\u00fcrich, Z\u00fcrich, Switzerland. E-mail:\u00a0","Department of Computer Science, ETH Z\u00fcrich, Z\u00fcrich, Switzerland. E-mail:\u00a0maurer@inf.ethz.ch"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Science, ETH Z\u00fcrich, Z\u00fcrich, Switzerland. E-mail:\u00a0","institution_ids":["https://openalex.org/I35440088"]},{"raw_affiliation_string":"Department of Computer Science, ETH Z\u00fcrich, Z\u00fcrich, Switzerland. E-mail:\u00a0maurer@inf.ethz.ch","institution_ids":["https://openalex.org/I35440088"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5055191549","display_name":"Bj\u00f6rn Tackmann","orcid":null},"institutions":[{"id":"https://openalex.org/I4210126328","display_name":"IBM Research - Zurich","ror":"https://ror.org/02js37d36","country_code":"CH","type":"facility","lineage":["https://openalex.org/I1341412227","https://openalex.org/I4210114115","https://openalex.org/I4210126328"]}],"countries":["CH"],"is_corresponding":true,"raw_author_name":"Bj\u00f6rn Tackmann","raw_affiliation_strings":["IBM Research\u00a0\u2013 Zurich, R\u00fcschlikon, Switzerland. E-mail:\u00a0","IBM Research\u00a0\u2013 Zurich, R\u00fcschlikon, Switzerland. E-mail:\u00a0bta@zurich.ibm.com"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"IBM Research\u00a0\u2013 Zurich, R\u00fcschlikon, Switzerland. E-mail:\u00a0","institution_ids":["https://openalex.org/I4210126328"]},{"raw_affiliation_string":"IBM Research\u00a0\u2013 Zurich, R\u00fcschlikon, Switzerland. E-mail:\u00a0bta@zurich.ibm.com","institution_ids":["https://openalex.org/I4210126328"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5051578427","https://openalex.org/A5053315559","https://openalex.org/A5055191549"],"corresponding_institution_ids":["https://openalex.org/I4210107426","https://openalex.org/I4210126328","https://openalex.org/I4210144191"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.32444607,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":94},"biblio":{"volume":"27","issue":"1","first_page":"75","last_page":"111"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11504","display_name":"Advanced Authentication Protocols Security","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11504","display_name":"Advanced Authentication Protocols Security","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.9980000257492065,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/password","display_name":"Password","score":0.7453646659851074},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7334475517272949},{"id":"https://openalex.org/keywords/session","display_name":"Session (web analytics)","score":0.6877790689468384},{"id":"https://openalex.org/keywords/one-time-password","display_name":"One-time password","score":0.668074369430542},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6418685913085938},{"id":"https://openalex.org/keywords/s/key","display_name":"S/KEY","score":0.5254228115081787},{"id":"https://openalex.org/keywords/password-strength","display_name":"Password strength","score":0.5221041440963745},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.5219916105270386},{"id":"https://openalex.org/keywords/password-cracking","display_name":"Password cracking","score":0.4379824101924896},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.11793652176856995}],"concepts":[{"id":"https://openalex.org/C109297577","wikidata":"https://www.wikidata.org/wiki/Q161157","display_name":"Password","level":2,"score":0.7453646659851074},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7334475517272949},{"id":"https://openalex.org/C2779182362","wikidata":"https://www.wikidata.org/wiki/Q17126187","display_name":"Session (web analytics)","level":2,"score":0.6877790689468384},{"id":"https://openalex.org/C89479133","wikidata":"https://www.wikidata.org/wiki/Q1137840","display_name":"One-time password","level":3,"score":0.668074369430542},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6418685913085938},{"id":"https://openalex.org/C4957475","wikidata":"https://www.wikidata.org/wiki/Q242186","display_name":"S/KEY","level":3,"score":0.5254228115081787},{"id":"https://openalex.org/C70530487","wikidata":"https://www.wikidata.org/wiki/Q1990841","display_name":"Password strength","level":4,"score":0.5221041440963745},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.5219916105270386},{"id":"https://openalex.org/C3847113","wikidata":"https://www.wikidata.org/wiki/Q2746524","display_name":"Password cracking","level":5,"score":0.4379824101924896},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.11793652176856995}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.3233/jcs-181131","is_oa":false,"landing_page_url":"https://doi.org/10.3233/jcs-181131","pdf_url":null,"source":{"id":"https://openalex.org/S106992369","display_name":"Journal of Computer Security","issn_l":"0926-227X","issn":["0926-227X","1875-8924"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310318577","host_organization_name":"IOS Press","host_organization_lineage":["https://openalex.org/P4310318577"],"host_organization_lineage_names":["IOS Press"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Computer Security","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.7799999713897705,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":24,"referenced_works":["https://openalex.org/W1482123743","https://openalex.org/W1485237094","https://openalex.org/W1516161674","https://openalex.org/W1566256504","https://openalex.org/W1601218083","https://openalex.org/W1658032532","https://openalex.org/W1724472458","https://openalex.org/W1746848557","https://openalex.org/W1759759811","https://openalex.org/W1775738675","https://openalex.org/W1805451635","https://openalex.org/W2006809639","https://openalex.org/W2015780695","https://openalex.org/W2072573758","https://openalex.org/W2111303254","https://openalex.org/W2124926080","https://openalex.org/W2139172211","https://openalex.org/W2149929743","https://openalex.org/W2158554251","https://openalex.org/W2160879729","https://openalex.org/W2167606175","https://openalex.org/W2188421441","https://openalex.org/W2404532714","https://openalex.org/W2752073905"],"related_works":["https://openalex.org/W2953105088","https://openalex.org/W2969720675","https://openalex.org/W2949495265","https://openalex.org/W3088784215","https://openalex.org/W2021087413","https://openalex.org/W85711018","https://openalex.org/W2400890210","https://openalex.org/W4361801999","https://openalex.org/W2118366631","https://openalex.org/W1970072309"],"abstract_inverted_index":{"Cryptographic":[0],"security":[1,120,191],"is":[2,21,51,57,90,122,142,151,172],"usually":[3],"defined":[4],"as":[5],"a":[6,12,53,61,67,81,87,138,154,184,186],"guarantee":[7,89,141,157],"that":[8,24,73],"holds":[9,159],"except":[10],"when":[11],"bad":[13,25,46,70],"event":[14,71],"with":[15,35,83],"negligible":[16],"probability":[17],"occurs,":[18],"and":[19,124,134],"nothing":[20],"guaranteed":[22],"in":[23,28,174],"case.":[26,47],"However,":[27],"settings":[29],"where":[30,52],"such":[31,85,117,183],"failure":[32],"can":[33],"happen":[34],"substantial":[36],"probability,":[37],"one":[38],"needs":[39],"to":[40,65,126],"provide":[41],"guarantees":[42,121],"even":[43],"for":[44,94,115,144,162,178],"the":[45,69,74,78,96,128,146,164,170],"A":[48,112],"typical":[49],"example":[50],"(possibly":[54],"weak)":[55],"password":[56,97],"used":[58],"instead":[59],"of":[60,105,130,148,166,190],"secure":[62],"cryptographic":[63],"key":[64],"protect":[66],"session,":[68],"being":[72],"adversary":[75],"correctly":[76],"guesses":[77],"password.":[79],"In":[80,176],"situation":[82,147],"multiple":[84],"sessions,":[86],"per-session":[88,155],"desired:":[91],"any":[92],"session":[93],"which":[95,163],"has":[98],"not":[99],"been":[100,110],"guessed":[101],"remains":[102],"secure,":[103],"independently":[104],"whether":[106],"other":[107],"sessions":[108,171],"have":[109],"compromised.":[111],"new":[113],"formalism":[114],"stating":[116],"gracefully":[118],"degrading":[119],"introduced":[123],"applied":[125],"analyze":[127],"examples":[129],"password-based":[131,135,149],"message":[132],"authentication":[133],"encryption.":[136],"While":[137],"natural":[139],"per-message":[140],"achieved":[143],"authentication,":[145],"encryption":[150],"more":[152,179],"delicate:":[153],"confidentiality":[156],"only":[158],"against":[160],"attackers":[161,181],"distribution":[165],"password-guessing":[167],"effort":[168],"over":[169],"known":[173],"advance.":[175],"contrast,":[177],"general":[180],"without":[182],"restriction,":[185],"strong,":[187],"composable":[188],"notion":[189],"cannot":[192],"be":[193],"achieved.":[194]},"counts_by_year":[{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":1}],"updated_date":"2026-05-21T06:26:12.895304","created_date":"2025-10-10T00:00:00"}