By Topic

Security analysis of a remote user authentication scheme using smart card

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$33 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

2 Author(s)
Canyan Zhu ; School of EI Engineering, Soochow University, Suzhou 215021, China ; Lihua Zhang

Chien et al proposed an efficient and practical remote authentication using smart cards. In 2004, Ku et al pointed out that Chien et alpsilas scheme is insecure, and proposed an improved password-based remote user authentication scheme. In this paper, the security of Kupsilas scheme is analyzed. It is demonstrated that Kupsilas scheme still has some weaknesses: it cannot withstand against the parallel session attack; it is vulnerable to the password guessing attacks and another new attack; it cannot resist on changing time stamp attack. It is then concluded that Kupsilas scheme cannot achieve the security requirements as their claims. Based on the analysis, we find all the attacks are happened because of the simple computation of h(ci oplus Tj) in all the phases of remote authentication, thus we develop a hyper-complex chaotic hash scheme. It is evidently shown that the security of the improved remote user authentication scheme is efficiently enhanced.

Published in:

Neural Networks and Signal Processing, 2008 International Conference on

Date of Conference:

7-11 June 2008