An improved smart card based password authentication scheme with provable security

Authors:
Jing Xu;Wen-Tao Zhu;Deng-Guo Feng
Affiliations:
State Key Laboratory of Information Security, Institute of Software, Chinese Academy of Sciences, Beijing 100190, PR China;State Key Laboratory of Information Security, Graduate University of Chinese Academy of Sciences, Beijing 100049, PR China;State Key Laboratory of Information Security, Institute of Software, Chinese Academy of Sciences, Beijing 100190, PR China
Venue:
Computer Standards & Interfaces
Year:
2009

Citing 3
Cited 19

Password authentication with insecure communication

Communications of the ACM
Examining Smart-Card Security under the Threat of Power Analysis Attacks

IEEE Transactions on Computers
Authenticated key exchange secure against dictionary attacks

EUROCRYPT'00 Proceedings of the 19th international conference on Theory and application of cryptographic techniques

An improvement of Xu et al.'s authentication scheme using smart cards

Proceedings of the Third Annual ACM Bangalore Conference
Advanced smart card based password authentication protocol

Computer Standards & Interfaces
Provable secure authentication protocol with anonymity for roaming service in global mobility networks

Computer Networks: The International Journal of Computer and Telecommunications Networking
Secure dynamic identity-based remote user authentication scheme

ICDCIT'10 Proceedings of the 6th international conference on Distributed Computing and Internet Technology
Cryptanalysis of the user authentication scheme with anonymity

FGIT'11 Proceedings of the Third international conference on Future Generation Information Technology
Review: Dynamic ID-based remote user password authentication schemes using smart cards: A review

Journal of Network and Computer Applications
A More Secure Authentication Scheme for Telecare Medicine Information Systems

Journal of Medical Systems
A Secure Authentication Scheme for Telecare Medicine Information Systems

Journal of Medical Systems
Security analysis of a multi-factor authenticated key exchange protocol

ACNS'12 Proceedings of the 10th international conference on Applied Cryptography and Network Security
An Improved Authentication Scheme for Telecare Medicine Information Systems

Journal of Medical Systems
An Efficient and Secure Dynamic ID-based Authentication Scheme for Telecare Medical Information Systems

Journal of Medical Systems
A temporal-credential-based mutual authentication and key agreement scheme for wireless sensor networks

Journal of Network and Computer Applications
Comments on an advanced dynamic ID-Based authentication scheme for cloud computing

WISM'12 Proceedings of the 2012 international conference on Web Information Systems and Mining
Security analysis of a secure and practical dynamic identity-based remote user authentication scheme

WISM'12 Proceedings of the 2012 international conference on Web Information Systems and Mining
Cryptanalysis of a remote user authentication scheme for mobile client-server environment based on ECC

Information Fusion
An Authentication Scheme for Secure Access to Healthcare Services

Journal of Medical Systems
A lightweight dynamic pseudonym identity based authentication and key agreement protocol without verification tables for multi-server architecture

Journal of Computer and System Sciences
Security Analysis of a Chaotic Map-based Authentication Scheme for Telecare Medicine Information Systems

Journal of Medical Systems
Cryptanalysis and improvement of a DoS-resistant ID-based password authentication scheme without using smart card

International Journal of Information and Communication Technology

Quantified Score

Hi-index	0.01

Visualization

Abstract

Password authentication has been adopted as one of the most commonly used solutions in network environment to protect resources from unauthorized access. Recently, Lee-Kim-Yoo [S.W. Lee, H.S. Kim, K.Y. Yoo, Improvement of Chien et al.'s remote user authentication scheme using smart cards, Computer Standards & Interfaces 27 (2) (2005) 181-183] and Lee-Chiu [N.Y. Lee, Y.C. Chiu, Improved remote authentication scheme with smart card, Computer Standards & Interfaces 27 (2) (2005) 177-180] respectively proposed a smart card based password authentication scheme. We show that these two schemes are both subject to forgery attacks provided that the information stored in the smart card is disclosed by the adversary. We also propose an improved scheme with formal security proof.