24 Web Proposal of Web Application Password Operations Management System 1130343 2013 3 1
Web Web ID Web 16 Web Web i
Abstract Proposal of Web Application Password Operations Management System Tatsuro Shingai As a way of attesting a Web Service the combination of user ID and the password is commonly used If the user uses a lot of Web services there is a need to manage multiple passwords And can not be inferred from personal information Users must set complex password which have more than 16 characters Therefore, it is impossible for users to remember multiple passwords and the user can not use the Web service securely To solve this problem many types of password managers have been proposed In this paper we review the existing problems and propose a novel password manager key words Cellular Phone Smartphone Attestation information management system Web application Password management system ii
1 1 1.1...................................... 1 2 4 2.1............................ 4 2.2............................ 5 2.3 OpenID................................... 5 2.4........................... 6 3 7 3.1................................ 7 3.1.1 Javascript........................... 7 3.2............................. 8 3.3................................ 9 3.3.1............................... 9 3.3.2.......................... 9 3.4................................ 10 3.4.1......................... 10 3.4.2......................... 11 3.4.3 ID................... 13 4 15 4.1................................... 15 4.1.1................................ 16 4.1.2................................ 17 iii
4.2...................................... 18 5 19 20 21 iv
1.1.......................... 1 1.2 Web............................ 2 2.1............................. 4 2.2 OpenID.................................... 5 3.1............................. 8 3.2.............................. 10 3.3.............................. 12 3.4................................. 13 3.5 ID....................... 14 v
4.1 Web.............................. 16 4.2.................................... 16 4.3.................................... 17 4.4.................................... 17 vi
1 1.1 1.1 EC [1] Web [2][3] Web 1.1 Web ID ID 1
1.1 1.2 Web [4][5][6] Web ID [4] 16 Web [4] Web ID Web Web ID 2
1.1 3
2 2.1 Web PC Web ID ID 2.1 4
2.2 2.2 LastPass 1Password Roboform OS OS 2.3 OpenID OpenID Web URL ID 1 OpenID OpenID Web 2.2 OpenID [7] OpenID Web Web [7] 2.2 OpenID 5
2.4 2.4 2.1 2.3 ID OS Web 6
3 2.4 Web ID Web Web 3.1 3.1.1 Javascript JavaScript JavaScript Netscape Navigator InternetExplorer Web Web Web JavaScript JavaScript Web Web HTML HTML [8] 7
3.2 3.2 3.1 3.1 8
3.3 3.3 2 ID Web ID 3.3.1 ID Web Web Web 3.3.2 ID Web Web 9
3.4 3.4 3.4.1. 3.2 3.2 10
3.4 3.4.2 3.3 MailAddress( ) M_Pw( ) Solt( ) Pw*M_Pw( ) 1. MailAddress M_Pw MailAddress 2. Solt 3. Solt M_Pw MailAddress 4. 5. M_Pw 3.4 11
3.4 3.3 12
3.4 3.4 3.4.3 ID ID Web URL ID ID AES 3.5 ID 13
3.4 3.5 ID 14
4 4.1 JavaScript UI HTML Twitter FaceBook Web ID ID 15
4.1 4.1.1 4.1 4.2 4.1 Web Web InternetExplorer 10.0 Chrome 24.0 FireFox 18.02 Safari 6.02 Opera 12.14 i-modebrowser 2.0 4.2 MacBookPro Windows7 Nexus CPU Corei5(2.3GHz) Corei7(2.8GHz) Tegra3(1.6GHz) NTTDocomoSH-03E AG5(1.2GHz) 16
4.1 4.1.2 4.3 2 10 (10000ms) 10 [9] 4.4 3 4.3 InternetExplorer Chrome FireFox Safari Opera i-modebrowser 30ms 23ms 27ms 23ms 24ms 328ms 4.4 10000ms 10000ms 17
4.2 4.2 Web Web Web HTML JavaScript Web Web 10000ms 20 30 10000ms ID 20 30 ID Web ID 18
5 Salt Salt Salt Salt ID Salt Web ID 20 30 ID 1 Salt 19
20
[1] 23 2011 [2] ICT SNS 2011 [3] 23 2011 [4] http://www.soumu.go.jp/ [5] Web http:// jp.trendmicro.com/ [6] 2011 [7] OpenID.ne.jp http://www.openid.ne.jp/. [8] David Flanagan JavaScript O REILLY 1997 [9] 1999 21