Cryptanalysis of a secure one-time password authentication scheme with low-communication for mobile communications

International Journal of Network Security

Volumn 1, Issue 2, 2005, Pages 74-76

  Wu, Hsien Chu ^a   Liu, Chi Yu ^b   Chiou, Shu Fen ^c  

^a NATIONAL TAICHUNG UNIVERSITY OF SCIENCE AND TECHNOLOGY   (Taiwan)

^b CHAOYANG UNIVERSITY OF TECHNOLOGY   (Taiwan)

^c NATIONAL CHUNG HSING UNIVERSITY   (Taiwan)

Author keywords

Authentication; Guessing attacks; One time password; Replay attacks; Security

Indexed keywords

ACTIVE ATTACK; AUTHENTICATION SCHEME; GUESSING ATTACKS; MOBILE COMMUNICATIONS; OFF-LINE DICTIONARY ATTACKS; ONE-TIME PASSWORDS; REPLAY ATTACK; SECURITY; SERVER-SPOOFING ATTACKS; USER AUTHENTICATION;

COMPUTER CRIME; CRYPTOGRAPHY;

AUTHENTICATION;

EID: 33645291303     PISSN: 1816353X     EISSN: 18163548     Source Type: Journal    
DOI: None     Document Type: Article

References (17)

1. N. M. Haller. "A one-time password system,". Tech. Rep. RFC 1938, May 1996.
2. M. S. Hwang, J. W. Lo, C. Y. Liu, and S. C. Lin, "Cryptanalysis of a user friendly remote authentica-tion scheme with smart card," Pakistan Journal of Applied Sciences, vol. 5, no. 1, pp. 99-100, 2005.
3. L. Lamport, "Password authentication with inse-cure communication," Communications of the ACM, vol. 24, pp. 770-772, November 1981.
4. C. C. Lee, M. S. Hwang, and W. P. Yang, "A flexi-ble remote user authentication scheme using smart cards," ACM Operating Systems Review, vol. 36, no. 3, pp. 46-52, 2002.
5. C. C. Lee, L. H. Li, and M. S. Hwang, "A remote user authentication scheme using hash functions," ACM Operating Systems Review, vol. 36, no. 4, pp. 23-29, 2002.
6. L. H. Li, I. C. Lin, and M. S. Hwang, "A remote pass-word authentication scheme for multi-server architec-ture using neural networks," IEEE Transactions on Neural Networks, vol. 12, no. 6, pp. 1498-1504, 2001.
7. C. W. Lin, J. J. Shen, and M. S. Hwang, "Security enhancement for optimal strong-password authenti-cation protocol," ACM Operating Systems Review, vol. 37, no. 2, pp. 7-12, 2003.
8. I. C. Lin, M. S. Hwang, and L. H. Li, "A new remote user authentication scheme for multi-server architec-ture," Future Generation Computer Systems, vol. 19, no. 1, pp. 13-22, 2003.
9. M. H. Lin and C. C. Chang, "A secure one-time pass-word authentication scheme with low-computation for mobile communications," ACM SIGOPS Oper-ating Systems Review, vol. 38, no. 2, pp. 76-84, Apr. 2004.
10. W. P. Yang, M. S. Hwang, C. C. Lee, "An improve-ment of mobile users authentication in the integra-tion environments," International Journal of Elec-tronics and Communications, vol. 56, no. 5, pp. 293-297, 2002.
11. C. J. Mitchell and L. Chen, "Comments on the S/KEY user authentication scheme," ACM Operat-ing System Review, vol. 30, no. 4, pp. 12-16, 1996.
12. J. J. Shen, C. W. Lin, and M. S. Hwang, "A modi-fied remote user authentication scheme using smart cards," IEEE Transactions on Consumer Electron-ics, vol. 49, no. 2, pp. 414-416, 2003.
13. J. J. Shen, C. W. Lin, and M. S. Hwang, "Security enhancement for the timestamp-based password au-thentication scheme using smart cards," Computers & Security, vol. 22, no. 7, pp. 591-595, 2003.
14. Y. L. Tang, M. S. Hwang, and C. C. Lee, "A simple remote user authentication scheme," Mathematical and Computer Modelling, vol. 36, pp. 103-107, 2002.
15. C. C. Yang, T. Y. Chang, and M. S. Hwang, "The security of the improvement on the methods for pro-tecting password transmission," Informatica, vol. 14, no. 4, pp. 551-558, 2003.
16. C. C. Yang, T. Y. Chang, J. W. Li, and M. S. Hwang, "Security enhancement for protecting pass-word transmission," IEICE Transactions on Com-munications, vol. E86-B, no. 7, pp. 2178-2181, 2003.
17. T. C. Yeh, H. Y. Shen, and J. J. Hwang, "A se-cure one-time password authentication scheme using smart cards," IEICE Transactions on Communica-tions, vol. E85, no. 11, pp. 2515-2518, 2002.