A user friendly remote authentication scheme with smart cards against impersonation attacks

被引：4

作者：

Hsu, CL ^{[1
]}

机构：

[1] Chang Gung Univ, Dept Informat Management, Taoyuan 333, Taiwan

来源：

APPLIED MATHEMATICS AND COMPUTATION | 2005年 / 170卷 / 01期

关键词：

authentication; password; smart card; impersonation attack; cryptanalysis;

D O I：

10.1016/j.amc.2004.10.098

中图分类号：

O29 [应用数学];

学科分类号：

070104 ;

摘要：

In 2000, Sun proposed an efficient remote user authentication scheme using smart cards without requiring a password table. However, the password of a user is an un-human lengthy password instead of a human memorized password, since it is determined by the system. Recently, Wu and Chieu proposed a User friendly remote authentication scheme with smart cards to achieve the user friendliness that users can freely choose and change their human memorized passwords. This article, however, will show that Wu and Chieu's scheme is vulnerable to two impersonation attacks. We further propose an improvement to withstand the impersonation attacks and achieve Wu and Chieu's claimed security requirements. (c) 2004 Elsevier Inc. All rights reserved.

引用

页码：135 / 143

页数：9

共 6 条

[1] A new remote user authentication scheme using smart cards [J].

Hwang, MS ;

Li, LH .

IEEE TRANSACTIONS ON CONSUMER ELECTRONICS, 2000, 46 (01) :28-30

[2] PASSWORD AUTHENTICATION WITH INSECURE COMMUNICATION [J].

LAMPORT, L .

COMMUNICATIONS OF THE ACM, 1981, 24 (11) :770-772

[3]

*NAT I STAND TECHN, 1993, NIST FIPS PUB, V180

[4]

RIVEST RL, 1992, 1231 RFC INT ACT BOA

[5] An efficient remote use authentication scheme using smart cards [J].

Sun, HM .

IEEE TRANSACTIONS ON CONSUMER ELECTRONICS, 2000, 46 (04) :958-961

[6] A userfriendly remote authentication scheme with smart cards [J].

Wu, ST ;

Chieu, BC .

COMPUTERS & SECURITY, 2003, 22 (06) :547-550

← 1 →