Cited By
View all- Hu YYao JHu S(2010)A New Protection Method of Private Key File in Smart CardProceedings of the 2010 Third International Symposium on Information Processing10.1109/ISIP.2010.19(228-232)Online publication date: 15-Oct-2010
Two attacks on a user friendly remote authentication scheme with smart cards
Authors: 
Kuo-Feng Hwang, I-En LiaoAuthors Info & Claims
Kuo-Feng Hwang, I-En LiaoAuthors Info & ClaimsPages 94 - 96
Abstract
Recently, Wu and Chieu proposed a user-friendly remote authentication scheme with smart card. In their scheme, the users can choose and change their passwords freely. However, their scheme is insecure. In this paper, we propose two attacks on their scheme.
References
[1]
Lamport, L., "Password authentication with insecure communication", Communication of ACM, Vol. 24, pp. 770--772, 1981.
[2]
Okamoto, E., and K. Tanka, "Identity-based information security managements system for personal computer networks", IEEE Journal on Selected Areas in Communications, Vol. 7, No. 2, pp. 290--294, 1989.
[3]
C. C. Chang and T. C. Wu, "Remote password authentication with smart cards", IEEE Proceeding, Vol. 138, No. 3, pp. 165--168, 1991.
[4]
C. C. Chang and S. J. Hwang, "Using smart cards to authenticate remote passwords", Computers and Mathematical Applications, Vol. 26, No. 7, pp. 9--27, 1993.
[5]
Hung-Min Sun, "An efficient remote use authentication scheme using smart card", IEEE Transactions on Consumer Electronics, Vol. 46, pp. 958--961, November, 2000.
[6]
Shyi-Tsong Wu and Bin-Chang Chieu, "A user friendly remote authentication scheme with smart cards", Computers and Security, Vol. 22, No. 6, pp. 547--550, 2003.
[7]
Chi-Yu, Min-Shiang Hwang, Jung-Wen Lo, and Shu-Chen Lin, "Cryptanalysis of A User Friendly Remote Authentication Scheme with Smart Card", in Proceedings of 14th Information Security Conference, Taiwan, pp. 256--259, June 2004.
Index Terms
- Two attacks on a user friendly remote authentication scheme with smart cards
Recommendations
A user friendly remote authentication scheme with smart cards against impersonation attacks
In 2000, Sun proposed an efficient remote user authentication scheme using smart cards without requiring a password table. However, the password of a user is an un-human lengthy password instead of a human memorized password, since it is determined by ...
A secure remote authentication scheme preserving user anonymity with non-tamper resistant smart cards
Anonymity is one of the important properties of remote authentication schemes to preserve user privacy. Besides, it can avoid unauthorized entities from using the user ID and other intercepted information to forge legal login messages. In 2004, Das et ...
Secure remote user authentication scheme using bilinear pairings
WISTP'07: Proceedings of the 1st IFIP TC6 /WG8.8 /WG11.2 international conference on Information security theory and practices: smart cards, mobile and ubiquitous computing systemsIn 2006, Das et al. proposed a remote user authentication scheme using the properties of bilinear pairings. The current paper, however, demonstrates that Das et al.'s scheme is still vulnerable to an impersonation attack and an off-line password ...
Comments
Information & Contributors
Information
Published In
Copyright © 2005 Authors.
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
Published: 01 April 2005
Published in SIGOPS Volume 39, Issue 2
Check for updates
Author Tags
Qualifiers
- Article
Contributors
Other Metrics
Bibliometrics & Citations
Bibliometrics
Article Metrics
- View Citations1Total Citations
- 661Total Downloads
- Downloads (Last 12 months)1
- Downloads (Last 6 weeks)0
Reflects downloads up to 05 Mar 2025
Other Metrics
Citations
Cited By
View all- Hu YYao JHu S(2010)A New Protection Method of Private Key File in Smart CardProceedings of the 2010 Third International Symposium on Information Processing10.1109/ISIP.2010.19(228-232)Online publication date: 15-Oct-2010
View Options
Login options
Check if you have access through your login credentials or your institution to get full access on this article.
Sign in