DoS-resistant ID-based password authentication scheme using smart cards

Authors:
Min-Shiang Hwang;Song-Kong Chong;Te-Yu Chen
Affiliations:
Department of Management Information Systems, National Chung Hsing University, 250 Kuo Kuang Road, Taichung 402, Taiwan, ROC;Department of Computer Science and Information Engineering, National Cheng-Kung University, 1 University Road, Tainan 701, Taiwan, ROC;Department of Computer Science and Engineering, National Chung Hsing University, 250 Kuo Kuang Road, Taichung 402, Taiwan, ROC
Venue:
Journal of Systems and Software
Year:
2010

Citing 13
Cited 5

Identity-based cryptosystems and signature schemes

Proceedings of CRYPTO 84 on Advances in cryptology
Enhanced privacy and authentication for the global system for mobile communications

Wireless Networks
Password authentication with insecure communication

Communications of the ACM
A flexible remote user authentication scheme using smart cards
Defending Against Denial-of-Service Attacks with Puzzle Auctions

SP '03 Proceedings of the 2003 IEEE Symposium on Security and Privacy
ID-based password authentication scheme using smart cards and fingerprints

ACM SIGOPS Operating Systems Review
Cryptanalysis of an ID-based password authentication scheme using smart cards and fingerprints

ACM SIGOPS Operating Systems Review
Survey of network-based defense mechanisms countering the DoS and DDoS problems

ACM Computing Surveys (CSUR)
A Pairing-Based User Authentication Scheme for Wireless Clients with Smart Cards

Informatica
A new remote user authentication scheme using smart cards

IEEE Transactions on Consumer Electronics
An efficient remote use authentication scheme using smart cards

IEEE Transactions on Consumer Electronics
Cryptanalysis of a remote user authentication scheme using smart cards

IEEE Transactions on Consumer Electronics
A modified remote user authentication scheme using smart cards

IEEE Transactions on Consumer Electronics

Two robust remote user authentication protocols using smart cards

Journal of Systems and Software
An authentication protocol for low-cost RFID tags

International Journal of Mobile Communications
An efficient and security dynamic identity based authentication protocol for multi-server architecture using smart cards

Journal of Network and Computer Applications
Review: Dynamic ID-based remote user password authentication schemes using smart cards: A review

Journal of Network and Computer Applications
Cryptanalysis and improvement of a DoS-resistant ID-based password authentication scheme without using smart card

International Journal of Information and Communication Technology

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper, we provide a defense mechanism to Kim-Lee-Yoo's ID-based password authentication scheme, which is vulnerable to impersonation attacks and resource exhaustion attacks. Mutual authentication and communication privacy are regarded as essential requirements in today's client/server-based architecture; therefore, a lightweight but secure mutual authentication method is introduced in the proposed scheme. Once the mutual authentication is successful, the session key will be established without any further computation. The proposed defense mechanism not only accomplishes the mutual authentication and the session key establishment, but also inherits the security advantages of Kim-Lee-Yoo's scheme, e.g. it is secure against password guessing attacks and message replay attacks.