Efficient multi-server authentication scheme based on one-way hash function without verification table

Efficient multi-server authentication scheme based on one-way hash function without verification table

Following advances in network technologies, an increasing number of systems have been provided to help network users via the Internet. In order to authenticate the remote users, password-based security mechanisms have been widely used. They are easily implemented, but these mechanisms must store a v...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Computers & security 2008-05, Vol.27 (3), p.115-121
1. Verfasser: Tsai, Jia-Lun
Format: Artikel
Sprache:eng
Schlagworte:
Authentication protocols
Authentication scheme
Internet
Multi-server
One-way hash function
Protocol verification
Servers
Service introduction
Smart card
Studies
Verification table
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page 121
container_issue 3
container_start_page 115
container_title Computers & security
container_volume 27
creator Tsai, Jia-Lun
description Following advances in network technologies, an increasing number of systems have been provided to help network users via the Internet. In order to authenticate the remote users, password-based security mechanisms have been widely used. They are easily implemented, but these mechanisms must store a verification table in the server. If an attacker steals the verification table from the server, the attacker may masquerade as a legal user. To solve the verification table stolen problem, numerous single server authentication schemes without verification tables have been proposed. These single authentication schemes suffer from a shortcoming. If a remote user wishes to use numerous network services, they must register their identity and password in these servers. In response to this problem, numerous related studies recently have been proposed. These authentication schemes enable remote users to obtain service from multiple servers without separately registering with each server. This study proposes an alternative multi-server authentication scheme using smart cards. The proposed scheme is based on the nonce, uses one-way hash function, and does not need to store any verification table in the server and registration center. The proposed scheme can withstand seven well known network security attacks.
doi_str_mv 10.1016/j.cose.2008.04.001
format Article
fullrecord <record><control><sourceid>proquest_cross</sourceid><recordid>TN_cdi_proquest_journals_207400231</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><els_id>S0167404808000084</els_id><sourcerecordid>1548743841</sourcerecordid><originalsourceid>FETCH-LOGICAL-c393t-f9b753bdfd6ecd405883e057551e1eb65be991b67c6ab555a2b1076385df35c83</originalsourceid><addsrcrecordid>eNp9kE1LxDAQhoMouH78AU_Fe-ukbdoUvMiyfsCCFz2HJJ3QlN12TdJd9t-bunr1NMzwvDPDQ8gdhYwCrR76TI8esxyAZ1BmAPSMLCiv87TKgZ-TRYTqtISSX5Ir7_sI1BXnC2JWxlhtcQjJdtoEm3p0e3SJnEIXh1bLYMch8brDLSZKemyT2I8Dpgd5TDrpu8RMg_6hDjZ04xSSuMCav2iQaoM35MLIjcfb33pNPp9XH8vXdP3-8rZ8Wqe6aIqQmkbVrFCtaSvUbQmM8wKB1YxRpKgqprBpqKpqXUnFGJO5olBXBWetKZjmxTW5P-3dufFrQh9EP05uiCdFDnUJkBc0QvkJ0m703qERO2e30h0FBTHrFL2YdYpZp4BSRFsx9HgKYXx_b9EJP2vT2FqHOoh2tP_FvwHVW3_6</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>207400231</pqid></control><display><type>article</type><title>Efficient multi-server authentication scheme based on one-way hash function without verification table</title><source>Elsevier ScienceDirect Journals</source><creator>Tsai, Jia-Lun</creator><creatorcontrib>Tsai, Jia-Lun</creatorcontrib><description>Following advances in network technologies, an increasing number of systems have been provided to help network users via the Internet. In order to authenticate the remote users, password-based security mechanisms have been widely used. They are easily implemented, but these mechanisms must store a verification table in the server. If an attacker steals the verification table from the server, the attacker may masquerade as a legal user. To solve the verification table stolen problem, numerous single server authentication schemes without verification tables have been proposed. These single authentication schemes suffer from a shortcoming. If a remote user wishes to use numerous network services, they must register their identity and password in these servers. In response to this problem, numerous related studies recently have been proposed. These authentication schemes enable remote users to obtain service from multiple servers without separately registering with each server. This study proposes an alternative multi-server authentication scheme using smart cards. The proposed scheme is based on the nonce, uses one-way hash function, and does not need to store any verification table in the server and registration center. The proposed scheme can withstand seven well known network security attacks.</description><identifier>ISSN: 0167-4048</identifier><identifier>EISSN: 1872-6208</identifier><identifier>DOI: 10.1016/j.cose.2008.04.001</identifier><identifier>CODEN: CPSEDU</identifier><language>eng</language><publisher>Amsterdam: Elsevier Ltd</publisher><subject>Authentication protocols ; Authentication scheme ; Internet ; Multi-server ; One-way hash function ; Protocol verification ; Servers ; Service introduction ; Smart card ; Studies ; Verification table</subject><ispartof>Computers &amp; security, 2008-05, Vol.27 (3), p.115-121</ispartof><rights>2008 Elsevier Ltd</rights><rights>Copyright Elsevier Sequoia S.A. May/Jun 2008</rights><lds50>peer_reviewed</lds50><woscitedreferencessubscribed>false</woscitedreferencessubscribed><citedby>FETCH-LOGICAL-c393t-f9b753bdfd6ecd405883e057551e1eb65be991b67c6ab555a2b1076385df35c83</citedby><cites>FETCH-LOGICAL-c393t-f9b753bdfd6ecd405883e057551e1eb65be991b67c6ab555a2b1076385df35c83</cites></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://dx.doi.org/10.1016/j.cose.2008.04.001$$EHTML$$P50$$Gelsevier$$H</linktohtml><link.rule.ids>314,778,782,3539,27907,27908,45978</link.rule.ids></links><search><creatorcontrib>Tsai, Jia-Lun</creatorcontrib><title>Efficient multi-server authentication scheme based on one-way hash function without verification table</title><title>Computers &amp; security</title><description>Following advances in network technologies, an increasing number of systems have been provided to help network users via the Internet. In order to authenticate the remote users, password-based security mechanisms have been widely used. They are easily implemented, but these mechanisms must store a verification table in the server. If an attacker steals the verification table from the server, the attacker may masquerade as a legal user. To solve the verification table stolen problem, numerous single server authentication schemes without verification tables have been proposed. These single authentication schemes suffer from a shortcoming. If a remote user wishes to use numerous network services, they must register their identity and password in these servers. In response to this problem, numerous related studies recently have been proposed. These authentication schemes enable remote users to obtain service from multiple servers without separately registering with each server. This study proposes an alternative multi-server authentication scheme using smart cards. The proposed scheme is based on the nonce, uses one-way hash function, and does not need to store any verification table in the server and registration center. The proposed scheme can withstand seven well known network security attacks.</description><subject>Authentication protocols</subject><subject>Authentication scheme</subject><subject>Internet</subject><subject>Multi-server</subject><subject>One-way hash function</subject><subject>Protocol verification</subject><subject>Servers</subject><subject>Service introduction</subject><subject>Smart card</subject><subject>Studies</subject><subject>Verification table</subject><issn>0167-4048</issn><issn>1872-6208</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2008</creationdate><recordtype>article</recordtype><recordid>eNp9kE1LxDAQhoMouH78AU_Fe-ukbdoUvMiyfsCCFz2HJJ3QlN12TdJd9t-bunr1NMzwvDPDQ8gdhYwCrR76TI8esxyAZ1BmAPSMLCiv87TKgZ-TRYTqtISSX5Ir7_sI1BXnC2JWxlhtcQjJdtoEm3p0e3SJnEIXh1bLYMch8brDLSZKemyT2I8Dpgd5TDrpu8RMg_6hDjZ04xSSuMCav2iQaoM35MLIjcfb33pNPp9XH8vXdP3-8rZ8Wqe6aIqQmkbVrFCtaSvUbQmM8wKB1YxRpKgqprBpqKpqXUnFGJO5olBXBWetKZjmxTW5P-3dufFrQh9EP05uiCdFDnUJkBc0QvkJ0m703qERO2e30h0FBTHrFL2YdYpZp4BSRFsx9HgKYXx_b9EJP2vT2FqHOoh2tP_FvwHVW3_6</recordid><startdate>20080501</startdate><enddate>20080501</enddate><creator>Tsai, Jia-Lun</creator><general>Elsevier Ltd</general><general>Elsevier Sequoia S.A</general><scope>AAYXX</scope><scope>CITATION</scope><scope>7SC</scope><scope>8FD</scope><scope>JQ2</scope><scope>K7.</scope><scope>L7M</scope><scope>L~C</scope><scope>L~D</scope></search><sort><creationdate>20080501</creationdate><title>Efficient multi-server authentication scheme based on one-way hash function without verification table</title><author>Tsai, Jia-Lun</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c393t-f9b753bdfd6ecd405883e057551e1eb65be991b67c6ab555a2b1076385df35c83</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2008</creationdate><topic>Authentication protocols</topic><topic>Authentication scheme</topic><topic>Internet</topic><topic>Multi-server</topic><topic>One-way hash function</topic><topic>Protocol verification</topic><topic>Servers</topic><topic>Service introduction</topic><topic>Smart card</topic><topic>Studies</topic><topic>Verification table</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Tsai, Jia-Lun</creatorcontrib><collection>CrossRef</collection><collection>Computer and Information Systems Abstracts</collection><collection>Technology Research Database</collection><collection>ProQuest Computer Science Collection</collection><collection>ProQuest Criminal Justice (Alumni)</collection><collection>Advanced Technologies Database with Aerospace</collection><collection>Computer and Information Systems Abstracts – Academic</collection><collection>Computer and Information Systems Abstracts Professional</collection><jtitle>Computers &amp; security</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Tsai, Jia-Lun</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>Efficient multi-server authentication scheme based on one-way hash function without verification table</atitle><jtitle>Computers &amp; security</jtitle><date>2008-05-01</date><risdate>2008</risdate><volume>27</volume><issue>3</issue><spage>115</spage><epage>121</epage><pages>115-121</pages><issn>0167-4048</issn><eissn>1872-6208</eissn><coden>CPSEDU</coden><abstract>Following advances in network technologies, an increasing number of systems have been provided to help network users via the Internet. In order to authenticate the remote users, password-based security mechanisms have been widely used. They are easily implemented, but these mechanisms must store a verification table in the server. If an attacker steals the verification table from the server, the attacker may masquerade as a legal user. To solve the verification table stolen problem, numerous single server authentication schemes without verification tables have been proposed. These single authentication schemes suffer from a shortcoming. If a remote user wishes to use numerous network services, they must register their identity and password in these servers. In response to this problem, numerous related studies recently have been proposed. These authentication schemes enable remote users to obtain service from multiple servers without separately registering with each server. This study proposes an alternative multi-server authentication scheme using smart cards. The proposed scheme is based on the nonce, uses one-way hash function, and does not need to store any verification table in the server and registration center. The proposed scheme can withstand seven well known network security attacks.</abstract><cop>Amsterdam</cop><pub>Elsevier Ltd</pub><doi>10.1016/j.cose.2008.04.001</doi><tpages>7</tpages></addata></record>
fulltext fulltext
identifier ISSN: 0167-4048
ispartof Computers & security, 2008-05, Vol.27 (3), p.115-121
issn 0167-4048
1872-6208
language eng
recordid cdi_proquest_journals_207400231
source Elsevier ScienceDirect Journals
subjects Authentication protocols
Authentication scheme
Internet
Multi-server
One-way hash function
Protocol verification
Servers
Service introduction
Smart card
Studies
Verification table
title Efficient multi-server authentication scheme based on one-way hash function without verification table
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-17T00%3A46%3A45IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_cross&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=Efficient%20multi-server%20authentication%20scheme%20based%20on%20one-way%20hash%20function%20without%20verification%20table&rft.jtitle=Computers%20&%20security&rft.au=Tsai,%20Jia-Lun&rft.date=2008-05-01&rft.volume=27&rft.issue=3&rft.spage=115&rft.epage=121&rft.pages=115-121&rft.issn=0167-4048&rft.eissn=1872-6208&rft.coden=CPSEDU&rft_id=info:doi/10.1016/j.cose.2008.04.001&rft_dat=%3Cproquest_cross%3E1548743841%3C/proquest_cross%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=207400231&rft_id=info:pmid/&rft_els_id=S0167404808000084&rfr_iscdi=true