Summary
|
For Full-Text PDF, please login, if you are a member of IEICE, or go to Pay Per View on menu list, if you are a nonmember of IEICE. |
|
Weaknesses of Two SAS-Like Password Authentication Schemes Min-Hung CHIANG Wei-Chi KU Publication IEICE TRANSACTIONS on Communications Vol.E89-B No.2 pp.594-597 Publication Date: 2006/02/01 Online ISSN: 1745-1345 DOI: 10.1093/ietcom/e89-b.2.594 Print ISSN: 0916-8516 Type of Manuscript: LETTER Category: Fundamental Theories for Communications Keyword: denial-of-service attack, password authentication, reparability, smart card, Full Text: PDF(69.9KB)>>
Summary: In 2000, Sandirigama, Shimizu, and Noda proposed a simple password authentication scheme, SAS. However, SAS was later found to be flawed. Recently, Chen, Lee, Horng proposed two SAS-like schemes, which were claimed to be more secure than similar schemes. Herein, we show that both their schemes are still vulnerable to denial-of-service attacks. Additionally, Chen-Lee-Horng's second scheme is not easily reparable. | |||||
|
