Browse > Article
http://dx.doi.org/10.5762/KAIS.2011.12.11.5245

Cryptanalysis of a Remote User Authentication scheme using Smart Cards  

Shin, Seung-Soo (Dept. of Information Security, College of Information & Communication, Tongmyong University)
Han, Kun-Hee (Division of Information & Communication Engineering, Baekseok University)
Chun, Je-Ran (Department of Medical Administration, Daejeon Health Science College)
Publication Information
Journal of the Korea Academia-Industrial cooperation Society / v.12, no.11, 2011 , pp. 5245-5251 More about this Journal
Abstract
Seo et al. criticizes that Hu-Niu-Yang's certification scheme is not enough to satisfy the security requirements of a smart card-based certification scheme because it has a weakness of password guessing attack as well as gives attackers opportunities to be disguised as legitimate users. However, Seo et al. also has a weakness not satisfying the security requirements. This paper suggests a new scheme that contains the characteristics of certification scheme provided by Seo et al. but compensates weak points. The findings show that the new scheme is more safety and efficient than Seo et al.'s
Keywords
Smart Cards; Password Guessing Attack; Replay Attack; Authentication Scheme;
Citations & Related Records
Times Cited By KSCI : 1  (Citation Analysis)
연도 인용수 순위
1 P. Kocher, J. Jaffe, B. Jun, "Differential power analysis," Proceedings of Advances in Cryptology (CRYPTO 99), pp. 388-398, 1999.
2 T.S, Messerges, E.A, Dabbish, R.H. Sloan, "Examining smart-cards security under the threat of power analysis attacks," IEEE Transactions on Computers, 51(5), pp. 541-552, 2002.   DOI
3 L. Lamport, "Password authentication with insecure communication," Communication of the ACM, 24(11), pp. 770-772, 1981.   DOI
4 C.C Chang, T.C. Wu, "Remote password authentication with smart cards," IEEE Proceedings-E, 138(3), pp. 165-168, 1991.   DOI
5 H.Y. Chien, J.K. Jan, Y.M. Tseng, "An efficient and practical solution to remote authentication using smart card," Computers & Security, 21(4), pp. 372-375, 2002.   DOI
6 C.L. Hsu, "Security of two remote user authentication schemes using smart card," IEEE Transactions on Consumer Electronics, 49(4), pp. 1196-1198, 2003.   DOI
7 J.Q. Kiu, J. Sun, T.H. Li, "An enhanced remote login authentication with smart card," Proceedings of IEEE Workshop on Signal Proceeding Systems Design and telecommunications, vol. 14, pp. 91-94, 2005.
8 L.L. Hu, X.X. Niu, Y.X. Yang, "Weakness and improvements of a remote user authentication scheme using smart cards," The journal of China univ. of posts and telecommunications, vol. 14, pp. 91-94, 2007.   DOI
9 J. Xu, W.T Zhu, D.G. Feng, "An improved smart card based password authentication scheme with provable security," Computers Standards & Interfaces, 31, pp. 723-728, 2009.   DOI
10 J. M. Seo, H. Y. An, "Security Improvements on the Remote User Authentication Scheme Using Smart Cards", Journal of the Korea Society of Computer and Information, Vol. 15, No.3, pp. 91-97, 2010. 3.   과학기술학회마을   DOI