Zero Knowledge Proof based authentication protocol using graph isomorphism

TL;DR

This paper proposes a zero-knowledge proof authentication protocol based on graph isomorphism, enhancing security by performing computations on the user's browser and avoiding direct information exchange.

Contribution

It introduces a novel ZKP-based authentication method utilizing graph isomorphism, with computations primarily on the client side to improve security.

Findings

Secure authentication without revealing passwords

Computations performed mainly on user's browser

Prevents leakage of personal information

Abstract

We live in an era of information and it is very important to handle the exchange of information. While sending data to an authorized source, we need to protect it from unauthorized sources, changes, and authentication. ZKP technique can be used in designing secure authentication systems that dont involve any direct exchange of information between the claimant and the verifier thus preventing any possible leak of personal information. We propose a Zero-Knowledge Proof (ZKP) algorithm based on isomorphic graphs. We suggest most of the computations should be carried out on the users' web browser without revealing the password to the server at any point in time. Instead, it will generate random graphs and their permutations based on the login ID and password.