Cryptanalysis of a Multi-Server Password Authenticated Key Agreement Scheme Using Smart Cards

Authors:
Wei-Chi Ku;Hsiu-Mei Chuang;Min-Hung Chiang
Affiliations:
The authors are with the Department of Computer Science and Information Engineering, Fu Jen Catholic University, Taipei, Taiwan 242, R.O.C. E-mail: wcku@csie.fju.edu.tw;The authors are with the Department of Computer Science and Information Engineering, Fu Jen Catholic University, Taipei, Taiwan 242, R.O.C. E-mail: wcku@csie.fju.edu.tw;The authors are with the Department of Computer Science and Information Engineering, Fu Jen Catholic University, Taipei, Taiwan 242, R.O.C. E-mail: wcku@csie.fju.edu.tw
Venue:
IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences
Year:
2005

Citing 0
Cited 1

Towards secure and efficient user authentication scheme using smart card for multi-server environments

The Journal of Supercomputing

Quantified Score

Hi-index	0.00

Visualization

Abstract

Recently, Juang proposed an efficient password authenticated key agreement scheme using smart cards for the multi-server architecture. Juang's scheme was intended to provide mutual authentication and session key agreement. Herein, we show that Juang's scheme is vulnerable to a privileged insider's attack and is not easily reparable. Furthermore, it does not provide forward secrecy and the user eviction mechanism.