A new dynamic ID-Based remote user authentication scheme with forward secrecy

Authors:
Chun-Guang Ma;Ding Wang;Ping Zhao;Yu-Heng Wang
Affiliations:
College of Computer Science and Technology, Harbin Engineering University, Harbin City, China;College of Computer Science and Technology, Harbin Engineering University, Harbin City, China and Automobile Management Institute of PLA, Bengbu City, China;College of Computer Science and Technology, Harbin Engineering University, Harbin City, China;Golisano College of Computing and Information Sciences, Rochester Institute of Technology, Rochester, NY
Venue:
APWeb'12 Proceedings of the 14th international conference on Web Technologies and Applications
Year:
2012

Citing 16
Cited 1

A security risk of depending on synchronized clocks

ACM SIGOPS Operating Systems Review
Applied cryptography (2nd ed.): protocols, algorithms, and source code in C

Applied cryptography (2nd ed.): protocols, algorithms, and source code in C
Examining Smart-Card Security under the Threat of Power Analysis Attacks

IEEE Transactions on Computers
Differential Power Analysis

CRYPTO '99 Proceedings of the 19th Annual International Cryptology Conference on Advances in Cryptology
Key Agreement Protocols and Their Security Analysis

Proceedings of the 6th IMA International Conference on Cryptography and Coding
Modern Cryptography: Theory and Practice

Modern Cryptography: Theory and Practice
The Performance Measurement of Cryptographic Primitives on Palm Devices

ACSAC '01 Proceedings of the 17th Annual Computer Security Applications Conference
A Remote Authentication Scheme Preserving User Anonymity

AINA '05 Proceedings of the 19th International Conference on Advanced Information Networking and Applications - Volume 2
A Study of the Energy Consumption Characteristics of Cryptographic Algorithms and Security Protocols

IEEE Transactions on Mobile Computing
A password authentication scheme over insecure networks

Journal of Computer and System Sciences
A more efficient and secure dynamic ID-based remote user authentication scheme

Computer Communications
Weaknesses and improvement of Wang et al.'s remote user password authentication scheme for resource-limited environments

Computer Standards & Interfaces
A secure remote authentication scheme preserving user anonymity with non-tamper resistant smart cards

WSEAS Transactions on Information Science and Applications
New dynamic ID authentication scheme using smart cards

International Journal of Communication Systems
Weaknesses and improvements of an efficient password based remote user authentication scheme using smart cards

IEEE Transactions on Consumer Electronics
A dynamic ID-based remote user authentication scheme

IEEE Transactions on Consumer Electronics

On the security of an improved password authentication scheme based on ECC

ICICA'12 Proceedings of the Third international conference on Information Computing and Applications

Quantified Score

Hi-index	0.00

Visualization

Abstract

Forward secrecy is one of the important properties of remote user authentication schemes to limit the effects of eventual failure of the entire system when the long-term private keys of one or more parties are compromised. Recently, Tsai et al. showed that Wang et al.'s dynamic ID-based remote user authentication scheme fails to achieve user anonymity and is vulnerable to user impersonation attack, and proposed an enhanced version to overcome all the identified flaws. In this paper, however, we will point out that, Tsai et al.'s scheme still suffers from the denial of service attack and cannot provide forward secrecy. To remedy these security flaws, we propose an enhanced authentication scheme, which covers all the identified weaknesses of Tsai et al.'s scheme and is more suitable for mobile application scenarios where resource constrained and security concerned.