This paper proposes a scheme for password management by storing password encryptions on a\nserver. The method involves having the encryption key split into a share for the user and one for\nthe server. The user�s share shall be based solely on a selected passphrase. The server�s share\nshall be generated from the user�s share and the encryption key. The security and trust are\nachieved by performing both encryption and decryption on the client side. We also address the\nissue of countering dictionary attack by providing a further enhancement of the scheme.
Loading....