Cryptanalysis and improvement of a robust smart-card-based remote user password authentication scheme'

International Journal of Communication Systems

Volumn 27, Issue 12, 2014, Pages 3939-3955

  Kumari, Saru ^a   Khan, Muhammad Khurram ^b  

^a AGRA COLLEGE   (India)

^b KING SAUD UNIVERSITY   (Saudi Arabia)

Author keywords

Password guessing attack; Session key disclosure; Smart card; Two factor security; User anonymity; User impersonation attack

Indexed keywords

CRYPTOGRAPHY; SMART CARDS;

PASSWORD GUESSING ATTACK; SESSION KEY; TWO-FACTOR SECURITY; USER ANONYMITY; USER IMPERSONATION ATTACKS;

AUTHENTICATION;

EID: 84914669082     PISSN: 10745351     EISSN: 10991131     Source Type: Journal    
DOI: 10.1002/dac.2590     Document Type: Article

References (26)

1. Lamport L. Password authentication with insecure communication. Communications of the ACM 1987; 24(11):770-772.
2. Hwang MS, Li LH. A new remote user authentication scheme using smart cards. IEEE Transactions on Consumer Electronics 2000; 46(1):28-30.
3. Wang XM, Zhang WF, Jhang JS, Khan MK. Cryptanalysis and improvement on two efficient remote user authentication scheme using smart cards. Computer Standards and Interfaces 2007; 29:507-512.
4. Chien HY, Jan JK, Tseng YM. An efficient and practical solution to remote authentication: smart card. Computers & Security 2002; 21(4):372-375.
5. Khan MK, Kim SK, Alghathbar K. Cryptanalysis and security enhancement of a ?more efficient & secure dynamic ID-based remote user authentication scheme'. Computer Communications 2010; 34(3):305-309.
6. Lee SW, Kim HS, Yoo KY. Improvement of Chien et al.'s remote user authentication scheme using smart cards. Computer Standards & Interfaces 2005; 27(2):181-183.
7. Kumari S, Gupta MK, Kumar M. Cryptanalysis and security enhancement of Chen et al.'s remote user authentication scheme using smart card. Central European Journal of Computer Science 2012; 2(1):60-75.
8. Pippal RS, Jaidhar CD, Tapaswi S. Comments on symmetric key encryption based smart card authentication scheme. Proceedings of the Second International Conference on Computer Technology and Development (ICCTD). IEEE: Cairo, Egypt, 2-4 November 2010; 482-484.
9. Song R. Advanced smart card based password authentication protocol. Computer Standards & Interfaces 2010; 32(5):321-325.
10. Sood SK, Sarje AK, Singh K. An improvement of Xu et al.'s authentication scheme using smart cards. Proceedings of The Third Annual ACM Bangalore Conference (COMPUTE' 10). ACM: Bangalore, Karnataka, India, 2010; 1-5.
11. Xu J, Zhu WT, Feng DG. An improved smart card based password authentication scheme with provable security. Computer Standards & Interfaces 2009; 31(4):723-728.
12. Yang G,Wong DS,Wang H, Deng X. Two-factor mutual authentication based on smart cards and passwords. Journal of Computer and System Sciences 2008; 74:1160-1172.
13. Kumar M, Gupta MK, Kumari S. An improved efficient remote password authentication scheme with smart card over insecure networks. International Journal of Network Security 2011; 13(3): 167-177.
14. Chen C, He D, Chan S, Bu J, Gao Y, Fan R. Lightweight and provably secure user authentication with anonymity for the global mobility network. International Journal of Communication Systems 2011; 24(3):347-362.
15. Yeh KH, Lo NW, Li Y. Cryptanalysis of Hsiang-Shih's authentication scheme for multi-server architecture. International Journal of Communication Systems 2011; 24(7):829-836.
16. Tang H, Liu X, Chen J. Weakness of remote authentication scheme of Chen et al. International Journal of Communication Systems 2013; DOI: 10.1002/dac.2534.
17. Chuang YH, Tseng YM. Towards generalized ID-based user authentication for mobile multi-server environment, International Journal of Communication Systems 2012; 25(4):447-460.
18. Tang H, Liu X. Cryptanalysis of a dynamic ID-based remote user authentication with key agreement scheme. International Journal of Communication Systems 2012; 25(12):1639-1644.
19. Simplicio MAJ, Sakuragui RRM. Cryptanalysis of an efficient three-party password-based key exchange scheme. International Journal of Communication Systems 2012; 25(11):1443-1449.
20. Das ML, Saxena A, Gulati VP. A dynamic ID-based remote user authentication scheme. IEEE Transaction Consumer Electron 2004; 50(2):629-631.
21. Chen BL, Kuo WC, Wuu LC. Robust smart-card-based remote user password authentication scheme. International Journal of Communication Systems 2012; DOI: 10.1002/dac.2368.
22. Truong TT, Tran MT, Duong AD. Robust mobile device integration of a fingerprint biometric remote authentication scheme. Proceedings of 26th IEEE International Conference on Advanced Information Networking and Applications 2012; 678-685.
23. Kocher P, Jaffe J, Jun B. Differential power analysis. Advances in Cryptology, CRYPTO '99 1999; 1666:788-797.
24. Messerges TS, Dabbish EA, Sloan RH. Examining smart card security under the threat of power analysis attacks. IEEE Transactions on Computers 2002; 51(5):541-552.
25. Peyravian M, Roginsky A, Zunic N, Hash-based encryption system. Computers & Security 1999; 18(4):345-350.
26. Ma CG, Wang D, Zhao SD. Security flaws in two improved remote user authentication schemes using smart cards. International Journal of Communication Systems 2012; DOI: 10.1002/dac.2468