A Study on Kerberos and Graphical Password-Based Web Authentication Scheme

Thangavel Murugan, Sagar Sikdar, Mihir Semwal, K. Indira

Research output: Chapter in Book/Report/Conference proceedingConference contribution


Web authentication methods are subject to several attacks due to the rapid expansion of information technology. It is apparent that the evolution of authentication-bypassing strategies, from brute force to dictionary attacks, will advance. Simple word lists, for instance, are employed in traditional dictionary attacks to crack commonly used usernames and passwords. Robust hashing methods can be used to safeguard credentials sent via an insecure communication channel. However, hackers have created a novel hybrid method called a ‘rainbow attack’ that is like dictionary attacks but focuses on password hashes. In today’s digital era, traditional security methods like one-factor authentication are ineffective at combating the previously mentioned cyber-attacks. Even two-factor authentication may be bypassed using advanced cyber-methods. This work focuses on advanced cyber-techniques that can defeat even two-factor authentication. Server-side forging is one technique used to get around the restrictions imposed by two-factor authentication. Therefore, it is obvious that strong authentication entities are needed if the danger of credential bypassing needs to be lowered, especially in the Web 3.0 platform. In this proposed study, the objective is to discuss the authentication strategies and improved strategies based on Kerberos and graphical password.

Original languageEnglish
Title of host publicationMachine Intelligence for Research and Innovations - Proceedings of MAiTRI 2023
EditorsOm Prakash Verma, Lipo Wang, Rajesh Kumar, Anupam Yadav
PublisherSpringer Science and Business Media Deutschland GmbH
Number of pages12
ISBN (Print)9789819981342
Publication statusPublished - 2024
Event1st International Conference on Machine Intelligence for Research and Innovations, MAiTRI 2023 - Jalandhar, India
Duration: Sept 1 2023Sept 3 2023

Publication series

NameLecture Notes in Networks and Systems
ISSN (Print)2367-3370
ISSN (Electronic)2367-3389


Conference1st International Conference on Machine Intelligence for Research and Innovations, MAiTRI 2023


  • Attacks
  • Authentication
  • Graphical password
  • Kerberos
  • Security

ASJC Scopus subject areas

  • Control and Systems Engineering
  • Signal Processing
  • Computer Networks and Communications


Dive into the research topics of 'A Study on Kerberos and Graphical Password-Based Web Authentication Scheme'. Together they form a unique fingerprint.

Cite this