How can password authentication remain secure even when communication channels are compromised? This paper introduces a method for user password authentication that provides security despite an intruder's ability to read data and tamper with communications. This innovative approach addresses the challenge of secure authentication in environments with insecure communication channels. The method relies on a secure one-way encryption function and can be implemented using a microcomputer in the user's terminal. This makes it practical for various systems, including those with limited resources. The proposed system can function effectively if an intruder can read the system's data, and can tamper with or eavesdrop on the communication between the user and the system. The proposed authentication method offers a robust solution for protecting passwords in vulnerable environments. With its simple implementation and reliance on a secure encryption function, it provides a practical approach to enhancing security in various systems. The method contributes to the field of computer security by providing a new tool for password authentication. Keywords: communication, computer science, information technology, security.
Published in Communications of the ACM, a leading journal in computer science, this paper addresses a core concern in the field: secure communication. The proposed password authentication method aligns with the journal's focus on practical solutions to real-world computing challenges. Its relevance to data security and system integrity makes it suitable for the journal's readership.