Efficient Anonym Smart Card Based Authentication Scheme for Multi-Server Architecture
نویسنده
چکیده
Multi-server authentication schemes are very practical from a user point of view, since they allow a user to get access to different services on different servers with one single registration. Smart card based approaches lead to more secure systems because they offer two-factor authentication, based on the strict combination of user's password and the possession of the smart card. In this paper, we first show that a previously proposed scheme does not satisfy perfect forward secrecy and is not resistant against insider attacks. Next, we propose a very efficient smart card based authentication scheme, solely using xor and hash operations, which is resistant against dishonest users and servers. Also anonymity and untraceability of user's behaviour is avoided.
منابع مشابه
Analysis of Password based Multi-server Authentication Schemes
As of today, numerous researchers have explored the issue of secure and efficient smart card based authentication scheme for these variety of application areas. This article explores the background research on the single server smart card authentication schemes as well as multi-server smart card authentication schemes and its associated research gaps. This article gives comparative analysis of ...
متن کاملA Robust and Efficient Smart Card Based Remote Login Mechanism for Multi-server Architecture
With the explosive growth of computer networks, two-party authentication mechanism is no longer sufficient for real world. In 2008, Lee and Lee presented an efficient remote authenticated key agreement scheme for a multi-server environment. Their approach is efficient due to light operations such as hash function and exclusiveOR. Unfortunately, we discovered that their scheme is unable to withs...
متن کاملA Secure and Efficient Dynamic Identity based Authentication Scheme for Multi-Server Environment using Smart Cards
Recently, more and more researches have been focused on proposing dynamic identity based remote authentication scheme for multi-server environment. In 2011, Lee, Lin and Chang proposed an improved scheme to remedy the weaknesses of Hsiang-Shih's scheme. However, we observe that Lee-Lin-Chang's scheme is still vulnerable to stolen smart card attack and malicious server attack. Besides, the passw...
متن کاملAn efficient dynamic ID based remote user authentication scheme using self-certified public keys for multi-server environment
Recently, Li et al. analyzed Lee et al.’s multi-server authentication scheme and proposed a novel smart card and dynamic ID based remote user authentication scheme for multi-server environments. They claimed that their scheme can resist several kinds of attacks. However, through careful analysis, we find that Li et al.’s scheme is vulnerable to stolen smart card and offline dictionary attack, r...
متن کاملNotes on "An Anonymous Multi-server Authenticated Key Agreement Scheme Based on Trust Computing Using Smart Card and Biometrics"
Nowadays, multi-server remote user authentication schemes have been studied extensively in the literature. Recently, Chuang and Chen proposed a multi-server authentication scheme based on trust computing using smart cards and biometrics. Their scheme is more efficient and can achieve more security requirements than other related schemes. However, we found that Chuang and Chen’s scheme can discl...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2015