Microcontroller-based implementation of parseKey+ for limited resources embedded applications

Abstract

ParseKey+ is an approach to a new highly secure and safe authentication service. The scheme provides secure authentication process for both server and client sides. It employs hash to hide the encrypted key in a key file retrievable only by the other side knowing the indices and lengths of the sub-keys hidden inside ParseKey+ file. The ParseKey+ file itself is also encrypted by the password of the other party in authentication service using a symmetric encryption method. We wish to implement the ParseKey+ authentication system with limited resources on AVR microcontrollers. More sophisticated versions of these families of microcontrollers are widely used in PDAs, new generation of mobile phones and various embedded devices. Implementation of ParseKey+ allows securing Internet communication and transactions on above-mentioned devices in addition to providing a highly secure mechanism for implementing very low-cost hardware USB keys for online banking applications. © 2011 ACM.