期刊
JOURNAL OF NETWORK AND COMPUTER APPLICATIONS
卷 36, 期 5, 页码 1365-1371出版社
ACADEMIC PRESS LTD- ELSEVIER SCIENCE LTD
DOI: 10.1016/j.jnca.2013.02.034
关键词
Password authentication; Smart card; Cryptanalysis; Session key agreement; Security
类别
资金
- Research Fund of the State Key Laboratory of Software Development Environment [BUAA SKLSDE-2012ZX-17]
- National Natural Science Foundation of China [61271041, 61170296, 61190120]
- Program for New Century Excellent Talents in University [NECT-09-0028]
- Scientific Research Fund of Hunan Provincial Education Department [10B034]
- Hunan Provincial Natural Science Foundation of China [10JJ3067]
- Hunan Provincial Science and Technology Plan Project [2012FJ4333]
Smart card based password authentication is one of the simplest and efficient authentication mechanisms to ensure secure communication in insecure network environments. Recently, Chen et al. have pointed out the weaknesses of some password authentication schemes and proposed a robust smart card based remote user password authentication scheme to improve the security. As per their claims, their scheme is efficient and can ensure forward secrecy of the session key. However, we find that Chen et al.'s scheme cannot really ensure forward secrecy, and it cannot detect the wrong password in login phase. Besides, the password change phase of Chen et al.'s scheme is unfriendly and inefficient since the user has to communicate with the server to update his/her password. In this paper, we propose a modified smart card based remote user password authentication scheme to overcome the aforementioned weaknesses. The analysis shows that our proposed scheme is user friendly and more secure than other related schemes. (C) 2013 Elsevier Ltd. All rights reserved.
作者
我是这篇论文的作者
点击您的名字以认领此论文并将其添加到您的个人资料中。
推荐
暂无数据