On the analysis and design of a family tree of smart card based user authentication schemes

Authors:
Raphael C.-W. Phan;Bok-Min Goi
Affiliations:
LASEC, EPFL, Switzerland;Centre for Cryptography and Information Security, Faculty of Engineering, Multimedia University, Cyberjaya, Malaysia
Venue:
UIC'07 Proceedings of the 4th international conference on Ubiquitous Intelligence and Computing
Year:
2007

Citing 17
Cited 0

Undetectable on-line password guessing attacks

ACM SIGOPS Operating Systems Review
Password authentication with insecure communication

Communications of the ACM
Security Engineering: A Guide to Building Dependable Distributed Systems

Security Engineering: A Guide to Building Dependable Distributed Systems
Efficient Digital Public-Key Signature with Shadow (Abstract)

CRYPTO '87 A Conference on the Theory and Applications of Cryptographic Techniques on Advances in Cryptology
Security Analysis of a Nonce-Based User Authentication Scheme Using Smart Cards*This work was supported by the Korean Ministry of Information and Communication under the Information Technology Research Center (ITRC) support program supervised by the Institute of Information Technology Assessment (IITA).

IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences
Breaking up is hard to do: modeling security threats for smart cards

WOST'99 Proceedings of the USENIX Workshop on Smartcard Technology on USENIX Workshop on Smartcard Technology
Some Forgery Attacks on a Remote User Authentication Scheme Using Smart Cards

Informatica
Why provable security matters?

EUROCRYPT'03 Proceedings of the 22nd international conference on Theory and applications of cryptographic techniques
Protocols for Authentication and Key Establishment

Protocols for Authentication and Key Establishment
Cryptanalysis of two provably secure cross-realm C2C-PAKE protocols

INDOCRYPT'06 Proceedings of the 7th international conference on Cryptology in India
Cryptanalysis of an improved client-to-client password-authenticated key exchange (C2C-PAKE) scheme

ACNS'05 Proceedings of the Third international conference on Applied Cryptography and Network Security
Cryptanalysis of the n-party encrypted diffie-hellman key exchange using different passwords

ACNS'06 Proceedings of the 4th international conference on Applied Cryptography and Network Security
A new remote user authentication scheme using smart cards

IEEE Transactions on Consumer Electronics
Cryptanalysis of a remote user authentication scheme using smart cards

IEEE Transactions on Consumer Electronics
A modified remote user authentication scheme using smart cards

IEEE Transactions on Consumer Electronics
Cryptanalysis of a modified remote user authentication scheme using smart cards

IEEE Transactions on Consumer Electronics
A remote user authentication scheme using smart cards with forward secrecy

IEEE Transactions on Consumer Electronics

Quantified Score

Hi-index	0.00

Visualization

Abstract

A family (tree) of 2-party password-based authentication protocols based on smart cards abounds in security literature, more popularly known as remote user authentication schemes using smart cards. In this paper, we give a generic treatment to the security and analyses of such protocols, tracing back to the original versions due to Hwang et al. and Hwang-Li from which many variants have been derived. Our work here highlights the security implications of taking the break-and-tweak approach to protocol design.