An improvement of Xu et al.'s authentication scheme using smart cards

Authors:
Sandeep K. Sood;Anil K. Sarje;Kuldip Singh
Affiliations:
Indian Institute of Technology, Roorkee, India;Indian Institute of Technology, Roorkee, India;Indian Institute of Technology, Roorkee, India
Venue:
Proceedings of the Third Annual ACM Bangalore Conference
Year:
2010

Citing 4
Cited 0

Examining Smart-Card Security under the Threat of Power Analysis Attacks

IEEE Transactions on Computers
A password authentication scheme over insecure networks

Journal of Computer and System Sciences
Two-factor mutual authentication based on smart cards and passwords

Journal of Computer and System Sciences
An improved smart card based password authentication scheme with provable security

Computer Standards & Interfaces

Quantified Score

Hi-index	0.00

Visualization

Abstract

In 2009, Xu et al. found that Lee et al.'s [3] scheme is vulnerable to offline password guessing attack. Xu et al. also demonstrated that Lee and Chiu's [4] scheme is vulnerable to forgery attack. Furthermore, Lee and Chiu's scheme does not achieve mutual authentication and thus can not resist malicious server attack. Therefore, Xu et al. proposed an improved scheme that inherits the merits of Lee et al.'s and Lee and Chiu's schemes and resists different possible attacks. However, we found that Xu et al.'s scheme is vulnerable to forgery attack. This paper presents an improved scheme to resolve the aforementioned problem, while keeping the merits of Xu et al.'s scheme.