Security improvement on a timestamp-based password authentication scheme
IEEE Transactions on Consumer Electronics
Computer Standards & Interfaces
WSEAS Transactions on Information Science and Applications
Journal of Network and Computer Applications
Robust authentication and key agreement scheme preserving the privacy of secret key
Computer Communications
Robust one-time password authentication scheme using smart card for home network environment
Computer Communications
Location-based authentication protocol for first cognitive radio networking standard
Journal of Network and Computer Applications
Cryptanalysis of nonce-based mutual authentication scheme using smart cards
ICHIT'11 Proceedings of the 5th international conference on Convergence and hybrid information technology
An improved timestamp-based remote user authentication scheme
Computers and Electrical Engineering
Journal of Network and Computer Applications
A More Secure Authentication Scheme for Telecare Medicine Information Systems
Journal of Medical Systems
A Secure Authentication Scheme for Telecare Medicine Information Systems
Journal of Medical Systems
Hi-index | 0.24 |
In 2003, Shen, Lin and Hwang proposed a timestamp-based password authentication scheme using smart card. In the scheme the remote server does not need to store the passwords or verification tables for users' authentication, and the scheme also provides a timestamp-based mutual authentication method to prevent the forged login attack and the forged server attack. However, this authentication scheme has been found to be vulnerable to forged login attack; an attacker could impersonate legitimate users to login and access the remote server. To solve this problem, an improved scheme will be proposed in this paper, which is based on nonce instead of timestamp and can withstand the existing forged attacks. The security analysis shows that the improved scheme still keeps the features of the non-storage data model authentication scheme, will not add additional computation cost to the smart card, and is more secure and more applicable than Shen's scheme.