Cryptanalysis of a flexible remote user authentication scheme using smart cards

Cryptanalysis of a flexible remote user authentication scheme using smart cards

In 2002, Lee, Hwang, and Yang proposed a verifier-free remote user authentication scheme using smart cards. Their scheme is efficient because of mainly using cryptographic hash functions. However, we find that Lee-Hwang-Yang's scheme is not reparable once the user's permanent secret is com...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Operating systems review 2005, Vol.39 (1), p.90-96
Hauptverfasser: KU, Wei-Chi, CHEN, Shuai-Min
Format: Artikel
Sprache:eng
Schlagworte:
Applied sciences
Cryptography
Exact sciences and technology
Information, signal and communications theory
Signal and communications theory
Telecommunications and information theory
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:In 2002, Lee, Hwang, and Yang proposed a verifier-free remote user authentication scheme using smart cards. Their scheme is efficient because of mainly using cryptographic hash functions. However, we find that Lee-Hwang-Yang's scheme is not reparable once the user's permanent secret is compromised and is vulnerable to a privileged insider's attack. Furthermore, it lacks the user eviction mechanism. In this paper, we first show the weaknesses of Lee-Hwang-Yang's scheme, and then compare Lee-Hwang-Yang's scheme with three similar schemes.
ISSN:0163-5980
1943-586X
DOI:10.1145/1044552.1044562