On the security of HY-key authentication scheme

被引：24

作者：

Zhan, B ^{[1
]}

Li, Z ^{[1
]}

Yang, Y ^{[1
]}

Hu, Z ^{[1
]}

机构：

[1] Beijing Univ Posts & Telecommun, Dept Informat Engn, Beijing 1000876, Peoples R China

来源：

COMPUTER COMMUNICATIONS | 1999年 / 22卷 / 08期

关键词：

public key; authentication; password; certificate; guessing attack;

D O I：

10.1016/S0140-3664(99)00032-8

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

It is proved that the MY-key authentication scheme proposed by (Horng and Yang, Computer Communications 19 (1996) 848-850) is vulnerable to the guessing attack (Li et al., IEEE Journal on Selected Areas in Communications 11 (5) (1993)). The user's password is obtained by the guessing attack, and then the user's public key can be forged or the user's private key can be recovered. In order to overcome this disadvantage, we propose a new improved MY-scheme. The attacker cannot recover the user's private key, even though he has obtained the user's password. (C) 1999 Elsevier Science B.V. All rights reserved.

引用

页码：739 / 741

页数：3