Security enhancement of an IC-card-based remote login mechanism
Computer Networks: The International Journal of Computer and Telecommunications Networking
A secure user authentication protocol based on one-time-password for home network
ICCSA'05 Proceedings of the 2005 international conference on Computational Science and its Applications - Volume Part I
| Hi-index | 0.00 |
A new remote password authentication schemebased on IC cards is proposed in this paper. By using thescheme, a remote password can be authenticated withouteither a password file or a verification table. A user firstapplies for an account in the financial organization andthen uses the given IC card to login. In the login phase, auser inputs the identity and password, transmits thegenerated values to the center. In the authentication phase,the system uses the secret key and remotely submittedmessage to verify whether the request is legal or not. Aone-time-used random number and a timestamp aresupplied to protect the potential attacks, which may replaya previously intercepted login request. Further, by usingthe characteristics of IC cards, the proposed scheme isvery suitable for authenticating passwords remotely.