Skip to main content
SpringerLink
Log in

Security Enhancement for Password Authentication Schemes with Smart Cards

  • Conference paper
Trust, Privacy, and Security in Digital Business (TrustBus 2005)

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 3592))

Abstract

Recently, Yang-Wang-Chang proposed an improvement to Yang-Shieh’s two password authentication schemes by using smart cards that can withstand a forged login attack. Yang-Wang-Chang’s improved schemes, however, are still susceptible such attacks. Accordingly, the current paper demonstrates the vulnerability of Yang-Wang-Chang’s schemes to these attacks and presents an improvements to resolve such a problem.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Herstein, I.N.: Topics in Algebra. Xerox Corporation (1975)

    Google Scholar 

  2. Lamport, L.: Password Authentication with Insecure Communication. Communications of the ACM 24, 770–772 (1981)

    Article  Google Scholar 

  3. Wu, T.C.: Remote Login Authentication Scheme based on a Geometric Approach. Computer Communications 18(12), 959–963 (1995)

    Article  Google Scholar 

  4. Yang, W.H., Shieh, S.P.: Password Authentication Scheme with Smart Cards. Computers & Security 18(8), 727–733 (1999)

    Article  Google Scholar 

  5. Chan, C.K., Cheng, L.M.: Cryptanalysis of a Remote User Authentication Scheme using Smart Cards. IEEE Transaction on Consumer Electronics 46(4), 992–993 (2000)

    Article  Google Scholar 

  6. Hwang, M.S., Li, L.H.: A New Remote User Authentication Scheme using Smart Cards. IEEE Transaction on Consumer Electronics 46(1), 28–30 (2000)

    Article  Google Scholar 

  7. Sun, H.M.: An Efficient Remote User Authentication Scheme using Smart Cards. IEEE Transaction on Consumer Electronics 46(4), 958–961 (2000)

    Article  Google Scholar 

  8. Lee, C.C., Hwang, M.S., Yang, W.P.: A Flexible Remote User Authentication Scheme using Smart Cards. ACM Operating Systems Review 36(3), 46–52 (2002)

    Article  Google Scholar 

  9. Chan, C.K., Cheng, L.M.: Cryptanalysis of Timestamp-based Password Authentication Scheme. Computers & Security 21(1), 74–76 (2002)

    Article  Google Scholar 

  10. Sun, H.M., Yeh, H.T.: Further Cryptanalysis of a Password Authentication Scheme with Smart Cards. IEICE Transactions on Communications E86-B(4), 1412–1415 (2003)

    Google Scholar 

  11. Chen, K.F.: Attacks on the (Enhanced) Yang-Shieh Authentication. Computers & Security 22(8), 725–727 (2003)

    Article  Google Scholar 

  12. Yang, C.C., Wang, R.C., Chang, T.Y.: An Improvement of the Yang-Shieh Password Authentication Schemes. Applied Mathematics and Computation 162(3), 1391–1396 (2005)

    Article  MATH  MathSciNet  Google Scholar 

  13. Shen, J.J., Lin, C.W., Hwang, M.S.: Security Enhancement for the Timestamp-based Password Authentication Scheme using Smart Cards. Computers & Security 22(7), 591–595 (2003)

    Article  Google Scholar 

  14. Yoon, E.J., Ryu, E.K., Yoo, K.Y.: Security of shen et al.’s timestamp-based password authentication scheme. In: Laganá, A., Gavrilova, M.L., Kumar, V., Mun, Y., Tan, C.J.K., Gervasi, O. (eds.) ICCSA 2004. LNCS, vol. 3046, pp. 665–671. Springer, Heidelberg (2004)

    Chapter  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Department of Computer Engineering, Kyungpook National University, Daegu, 702-701, Republic of Korea

    Eun-Jun Yoon & Kee-Young Yoo

  2. Department of Information Security, Kyungpook National University, Daegu, 702-701, Republic of Korea

    Woo-Hun Kim

Authors
  1. Eun-Jun Yoon
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Woo-Hun Kim
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Kee-Young Yoo
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Dept. of Technology Education and Digital Systems, University of Piraeus, 150 Androutsou St., GR-18532, Pireaus, Greece

    Sokratis Katsikas

  2. Department of Information and Communication Technologies, University of A Coruña, Spain

    Javier López

  3. University of Regensburg, Universitätsstraße 31, Regensburg, Germany

    Günther Pernul

Rights and permissions

Reprints and permissions

Copyright information

© 2005 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Yoon, EJ., Kim, WH., Yoo, KY. (2005). Security Enhancement for Password Authentication Schemes with Smart Cards. In: Katsikas, S., López, J., Pernul, G. (eds) Trust, Privacy, and Security in Digital Business. TrustBus 2005. Lecture Notes in Computer Science, vol 3592. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11537878_31

Download citation

  • DOI: https://doi.org/10.1007/11537878_31

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-28224-2

  • Online ISBN: 978-3-540-31796-8

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation