Examining Smart-Card Security under the Threat of Power Analysis Attacks
IEEE Transactions on Computers
A password authentication scheme over insecure networks
Journal of Computer and System Sciences
Two-factor mutual authentication based on smart cards and passwords
Journal of Computer and System Sciences
An improved smart card based password authentication scheme with provable security
Computer Standards & Interfaces
Hi-index | 0.00 |
In 2009, Xu et al. found that Lee et al.'s [3] scheme is vulnerable to offline password guessing attack. Xu et al. also demonstrated that Lee and Chiu's [4] scheme is vulnerable to forgery attack. Furthermore, Lee and Chiu's scheme does not achieve mutual authentication and thus can not resist malicious server attack. Therefore, Xu et al. proposed an improved scheme that inherits the merits of Lee et al.'s and Lee and Chiu's schemes and resists different possible attacks. However, we found that Xu et al.'s scheme is vulnerable to forgery attack. This paper presents an improved scheme to resolve the aforementioned problem, while keeping the merits of Xu et al.'s scheme.