Design and analysis of an improved smartcard-based remote user password authentication scheme

International Journal of Communication Systems

Volumn 29, Issue 11, 2016, Pages 1708-1719

  Islam, SK Hafizul ^a  

^a BIRLA INSTITUTE OF TECHNOLOGY AND SCIENCE   (India)

Author keywords

mutual authentication; password; perfect forward secrecy; session key; smartcard

Indexed keywords

ALUMINUM; COPYRIGHTS; INTERNET; INTERNET PROTOCOLS; SMART CARDS;

AUTHENTICATION PROTOCOLS; DISCRETE LOGARITHM PROBLEMS; MUTUAL AUTHENTICATION; PASSWORD; PERFECT FORWARD SECRECY; SECURITY OF AUTHENTICATION; SESSION KEY; TELECOMMUNICATION TECHNOLOGIES;

AUTHENTICATION;

EID: 84899037889     PISSN: 10745351     EISSN: 10991131     Source Type: Journal    
DOI: 10.1002/dac.2793     Document Type: Article

References (30)

1. Yeh KH, Lo NW, Li YJ. Cryptanalysis of Hsiang–Shih's authentication scheme for multi-server architecture. International Journal of Communication Systems 2011; 24(7):829–836.
2. Chen C, He DJ, Chan SM, Bu JJ, Gao Y, Fan R. Lightweight and provably secure user authentication with anonymity for the global mobility network. International Journal of Communication Systems 2011; 24(3):347–362.
3. Tang HB, Liu XS. Cryptanalysis of a dynamic ID-based remote user authentication with key agreement scheme. International Journal of Communication Systems 2012; 25(12):1639–1644.
4. Chuang YH, Tseng YM. Towards generalized ID-based user authentication for mobile multi-server environment. International Journal of Communication Systems 2012; 25(4):447–460.
5. Jian Q, Ma J, Li G. Improvement of robust smart-card-based password authentication scheme. International Journal of Communication Systems 2013. DOI: 10.1002/dac.2644.
6. Tasi J-L, Wu T-C, Tasi K-Y. New dynamic ID authentication scheme using smart cards. International Journal of Communication Systems 2010; 23: 1449–1462.
7. He D, Chen J, Zhang R. A more secure authentication scheme for telecare medicine information systems. Journal of Medical Systems 2012; 36(3):1989–1995.
8. He D, Chen J, Chen Y. A secure mutual authentication scheme for session initiation protocol using elliptic curve cryptography. Security and Communication Networks 2012; 5(12):1423–1429. DOI: 10.1002/sec.506.
9. He D, Kumar N, Lee J-H. Anonymous two-factor authentication for consumer roaming service in Global Mobility Networks. IEEE Transactions on Consumer Electronics 2013; 59(4):811–817.
10. He D, Wang D. Robust biometrics-based authentication scheme for multi-server environment. IEEE Systems Journal 2014. DOI: 10.1109/JSYST.2014.2301517.
11. Song R, Korba L, Yee G. Analysis of smart card-based remote user authentication schemes. Proceedings of the 2007 International Conference on Security and Management, Las Vegas, USA, 2007; 323–329.
12. Ma C-G, Wang D, Zhao S-D. Security flaws in two improved remote user authentication schemes using smart cards. International Journal of Communication Systems 2012. DOI: 10.1002/dac.2468.
13. Song R. Advanced smartcard based password authentication protocol. Computer Standards and Interfaces 2010; 32(5):321–325.
14. Sood SK, Sarje AK, Singh K, An improvement of Xu et al.'s authentication scheme using smartcards. Proceedings of the Third Annual ACM Bangalore Conference, Bangalore, Karnataka, India, 2010; 17–25.
15. Xu J, Zhu WT, Feng DG. An improved smartcard based password authentication scheme with provable security. Computer Standards and Interfaces 2009; 31(4):723–728.
16. Chen BL, Kuo WC, Wuu LC. Robust smartcard-based remote user password authentication scheme. International Journal of Communication Systems 2014; 27: 377–389.
17. Messerges TS, Dabbish EA, Sloan RH. Examining smartcard security under the threat of power analysis attacks. IEEE Transactions on Computers 2002; 51(5):541–552.
18. Joye M, Olivier F. Side-Channel Analysis, Encyclopedia of Cryptography and Security. Kluwer Academic Publishers: Springer USA, 2005. 571–576.
19. Kocher P, Jaffe J, Jun B. Differential power analysis. Proceedings of Advances in Cryptology (Crypto’99), LNCS, Springer Berlin Heidelberg, 1999; 388–397.
20. Li X, Niu J, Khan MK, Liao J. An enhanced smartcard based remote user password authentication scheme. Journal of Network and Computer Applications 2013; 36: 1365–1371.
21. Chung H-R, Ku W-C, Tsaur M-J. Weaknesses and improvement of Wang et al.'s remote user password authentication scheme for resource-limited environments. Computer Standards and Interfaces 2009; 31: 863–868.
22. Kumari S, Khan MK. Cryptanalysis and improvement of ‘a robust smart-card-based remote user password authentication scheme’. International Journal of Communication Systems 2013. DOI: 10.1002/dac.2590.
23. Canetti R, Krawczyk H. Analysis of key exchange protocols and their use for building secure channels. Proceedings of Advances in Cryptology (Eurocrypt’01), London, UK, 2001; 453–474.
24. Cheng Z, Nistazakis M, Comley R, Vasiu L. On the indistinguishability-based security model of key agreement protocols-simple cases. Cryptology ePrint Archieve, Report 2005/129, 2005.
25. Swanson CM. 2008. Security in key agreement: two-party certificateless schemes, Master's thesis, University of Waterloo, Canada.
26. Mandt T, Tan C. Certificateless authenticated two-party key agreement protocols. Proceedings of the ASIAN, 2008; 37–44.
27. Hou M, Xu Q, Shanqing G, Jiang H. Cryptanalysis of identity-based authenticated key agreement protocols from parings. Journal of Networks 2010; 5(7):826–855.
28. Khan MK, Kim S-K, Alghathbr K. Cryptanalysis and security enhancement of a ‘more efficient & secure dynamic ID-based remote user authentication scheme’. Computer Communications 2011; 34: 305–309.
29. Hsiang H-C, Shis W-K. Improvement of the secure dynamic ID based remote user authentication scheme for multi-server environment. Computer Standards and Interfaces 2009; 31: 1118–1123.
30. Fan C-I, Chan Y-C, Zhang Z-K. Robust remote authentication scheme with smart cards. Computers and Security 2005; 24: 619–628.