Security of a Remote User Authentication Scheme Using Smart Cards(Internet)
スポンサーリンク
概要
- 論文の詳細を見る
Recently, Hwang and Li proposed a smartcard-based remote user authentication scheme. Later, Chan and Cheng showed that Hwang arid Li's scheme is insecure against a kind of impersonation attack where a legitimate user can create another valid pair of user identity and password without knowing the secret key of the remote system. However, an assumption under Chan and Cheng's attack is that the attacker must he a legal user. In this paper, we further present a more fundamental and efficient impersonation attack on Hwang and Li's scheme. Using our attack, any users (including legal and illegal users) can easily get a specific legal user's password, impersonate this specific user to login to the remote system, and pass the system authentication.
- 社団法人電子情報通信学会の論文
- 2004-01-01
著者
-
Yeh H‐t
Southern Taiwan Univ. Technol. Tainan Twn
-
Sun Hung-min
Department Of Computer Science National Tsing Hua University
-
YEH Her-Tyan
Department of Information and Communication, Southern Taiwan University of Technology
-
HSIEH Bin-Tsan
Department of Computer Science and Information Engineering, National Cheng Kung University
-
Yeh Her-tyan
Department Of Information And Communication Southern Taiwan University Of Technology
-
Yeh Her-tyan
Department Of Computer Science And Information Engineering National Cheng Kung University
-
Hsieh B‐t
Department Of Computer Science And Information Engineering National Cheng Kung University
関連論文
- A Note on Factoring α-LSBS Moduli
- Security of a Remote User Authentication Scheme Using Smart Cards(Internet)
- Improvement of Password Authenticated Key Exchange Based on RSA for Imbalanced Wireless Networks(Fundamental Theories)
- An Improvement of a Deniable Authentication Protocol(Network)
- Further Cryptanalysis of a Password Authentication Scheme with Smart Cards
- Improvement of an Efficient and Practical Solution to Remote Authentication : Smart Card(Internet)