Password authentication with insecure communication
Communications of the ACM
Examining Smart-Card Security under the Threat of Power Analysis Attacks
IEEE Transactions on Computers
CRYPTO '99 Proceedings of the 19th Annual International Cryptology Conference on Advances in Cryptology
Use of Elliptic Curves in Cryptography
CRYPTO '85 Advances in Cryptology
ID-based password authentication scheme using smart cards and fingerprints
ACM SIGOPS Operating Systems Review
An improved smart card based password authentication scheme with provable security
Computer Standards & Interfaces
Computer Standards & Interfaces
DoS-resistant ID-based password authentication scheme using smart cards
Journal of Systems and Software
Advanced smart card based password authentication protocol
Computer Standards & Interfaces
Hi-index | 0.00 |
An authentication scheme allows the user and the server to authenticate each other and establish a session key for future communication in an open network. Very recently, Wen et al. proposed a DoS-resistant ID-based password authentication scheme without using smart card. They claimed that their scheme could overcome various attacks. However, in this paper, we will point out that Wen et al.'s scheme is vulnerable to an impersonation attack and a privileged insider attack. To overcome weaknesses, we also propose an improved scheme. The analysis shows our scheme not only overcomes weaknesses in Wen et al.'s scheme but also has better performance. Then our scheme is more suitable for practical applications.