Improvement of robust smart-card-based password authentication scheme

被引：97

作者：

Jiang, Qi ^{[1
]}

Ma, Jianfeng ^{[1
]}

Li, Guangsong ^{[2
]}

Li, Xinghua ^{[1
]}

机构：

[1] Xidian Univ, Sch Comp Sci & Technol, Xian 710071, Peoples R China

[2] Zhengzhou Informat Sci & Technol Inst, Dept Informat Res, Zhengzhou 450002, Peoples R China

来源：

INTERNATIONAL JOURNAL OF COMMUNICATION SYSTEMS | 2015年 / 28卷 / 02期

基金：

中国国家自然科学基金;

关键词：

remote access; mutual authentication; secure channel; password; smart card; offline password guessing attack; REMOTE AUTHENTICATION;

D O I：

10.1002/dac.2644

中图分类号：

TM [电工技术]; TN [电子技术、通信技术];

学科分类号：

0808 ; 0809 ;

摘要：

Smart-card-based password authentication scheme is one of the commonly used mechanisms to prevent unauthorized service and resource access and to remove the potential security threats over the insecure networks and has been investigated extensively in the last decade. Recently, Chen et al. proposed a smart-card-based password authentication scheme and claimed that the scheme can withstand offline password guessing attacks even if the information stored in the smart card is extracted by the adversary. However, we observe that the scheme of Chen et al. is insecure against offline password guessing attacks in this case. To remedy this security problem, we propose an improved authentication protocol, which inherits the merits of the scheme of Chen et al. and is free from the security flaw of their scheme. Compared with the previous schemes, our improved scheme provides more security guarantees while keeping efficiency. Copyright (c) 2013 John Wiley & Sons, Ltd.

引用

页码：383 / 393

页数：11

共 50 条

[1] Cryptanalysis and improvement of 'a robust smart-card-based remote user password authentication scheme'
Kumari, Saru
Khan, Muhammad Khurram
[J]. INTERNATIONAL JOURNAL OF COMMUNICATION SYSTEMS, 2014, 27 (12) : 3939 - 3955
[2] Robust smart-card-based remote user password authentication scheme
Chen, Bae-Ling
Kuo, Wen-Chung
Wuu, Lih-Chyau
[J]. INTERNATIONAL JOURNAL OF COMMUNICATION SYSTEMS, 2014, 27 (02) : 377 - 389
[3] Cryptanalysis of 'A Robust Smart-Card-Based Remote User Password Authentication Scheme'A
Kumari, Saru
Bin Muhaya, Fahad
Khan, Muhammad Khurram
Kumar, Rahul
[J]. 2013 INTERNATIONAL SYMPOSIUM ON BIOMETRICS AND SECURITY TECHNOLOGIES (ISBAST), 2013, : 247 - 250
[4] Improvement on a Smart Card Based Password Authentication Scheme
He, Debiao
Chen, Jianhua
Hu, Jin
[J]. JOURNAL OF INTERNET TECHNOLOGY, 2012, 13 (03): : 405 - 409
[5] Robust password and smart card based authentication scheme with smart card revocation
Xie Q.
Liu W.-H.
Wang S.-B.
Hu B.
Dong N.
Yu X.-Y.
[J]. Journal of Shanghai Jiaotong University (Science), 2014, 19 (04) : 418 - 424
[6] Robust Password and Smart Card Based Authentication Scheme with Smart Card Revocation
谢琪
刘文浩
王圣宝
胡斌
董娜
于秀源
[J]. Journal of Shanghai Jiaotong University(Science), 2014, 19 (04) : 418 - 424
[7] A smart-card-based remote authentication scheme
Chang, CC
Lee, JS
[J]. ICESS 2005: SECOND INTERNATIONAL CONFERENCE ON EMBEDDED SOFTWARE AND SYSTEMS, 2005, : 445 - 449
[8] Improvement of smart card based password authentication scheme for multiserver environments
Tan, Zuowen
[J]. TURKISH JOURNAL OF ELECTRICAL ENGINEERING AND COMPUTER SCIENCES, 2012, 20 (06) : 881 - 900
[9] Cryptanalysis and improvement of an efficient password authentication scheme based on smart card
[J]. 1600, Computer Society of the Republic of China (25):
[10] Smart card based secure password authentication scheme
Wang, SJ
Chang, JF
[J]. COMPUTERS & SECURITY, 1996, 15 (03) : 231 - 237

← 1 2 3 4 5 →