期刊
COMPUTER STANDARDS & INTERFACES
卷 31, 期 6, 页码 1118-1123出版社
ELSEVIER
DOI: 10.1016/j.csi.2008.11.002
关键词
Authentication; Dynamic ID; Multi-server; Mutual authentication; Password; Smart card
Recently, Liao and Wang proposed a secure dynamic ID based remote user authentication scheme for multiserver environment, and claimed that their scheme was intended to provide mutual authentication, two-factor security, replay attack, server spoofing attack, insider and stolen verifier attack, forward secrecy and user anonymity. In this paper, we show that Liao and Wang's scheme is still vulnerable to insider's attack, masquerade attack, server spoofing attack, registration center spoofing attack and is not reparable. Furthermore, it fails to provide mutual authentication. To remedy these flaws, this paper proposes an efficient improvement over Liao-Wang's scheme with more security. The computation cost, security, and efficiency of the improved scheme are well suited to the practical applications environment. (C) 2008 Elsevier B.V. All rights reserved.
作者
我是这篇论文的作者
点击您的名字以认领此论文并将其添加到您的个人资料中。
推荐
暂无数据