Certain Number-Theoretic Questions in Access Control.

by Selmer Martin Johnson

Purchase Print Copy

 FormatList Price Price
Add to Cart Paperback24 pages $20.00 $16.00 20% Web Discount

Examines the use of pseudorandom numbers as passwords in databank systems that have many inquiry terminals. It shows that various logistically attractive periodic password generation and distribution systems are vulnerable to simple number-theoretic analyses that permit deducing of the passwords of all the inquiry stations. New generation and distribution strategies of the mixed congruential type to reduce such vulnerabilities are proposed and analyzed. It is shown that there is considerably more protection against cracking if the assignment order of passwords to stations is permuted each period. 24 pp. Ref.

This report is part of the RAND Corporation report series. The report was a product of the RAND Corporation from 1948 to 1993 that represented the principal publication documenting and transmitting RAND's major research findings and final research.

The RAND Corporation is a nonprofit institution that helps improve policy and decisionmaking through research and analysis. RAND's publications do not necessarily reflect the opinions of its research clients and sponsors.