Skip to Main Content
OSPA protocol is vulnerable to the replay attack and the denial-of-service attack. In this paper, we propose a USB-Key based strong Password authentication scheme. This scheme uses USB-Key to verify the user's password and store the security parameter. This scheme can achieve mutual authentication between user and server and user anonymity by using the temporary identity. The security analysis of the scheme proved that the scheme is resistant to replay attack, impersonation attack and DoS attack, and with high security, and can be applied to the users with low compute resource.