CRYPTANALYSIS AND IMPROVEMENT OF CHEN-HSIANG- SHIH’S REMOTE USER AUTHENTICATION SCHEME USING SMART CARDS

Recently, Chen-Hsiang-Shih proposed a new dynamic ID-based remote user authentication scheme. The authors claimed that their scheme was more secure than previous works. However, this paper demonstrates that their scheme is still unsecured against different kinds of attacks. In order to enhance the s...

Descripción completa

Detalles Bibliográficos
Autores: MARTINEZ PELAEZ, RAFAEL, RICO NOVELLA, FRANCISCO, VELARDE ALVARADO, PABLO
Tipo de recurso: artículo
Estado:Versión publicada
Fecha de publicación:2013
País:México
Institución:Universidad Autónoma de Nayarit
Repositorio:Repositorio Institucional Aramara de la UAN
Idioma:inglés
OAI Identifier:oai:dspace.uan.mx:123456789/769
Acceso en línea:http://dspace.uan.mx:8080/jspui/handle/123456789/769
Access Level:acceso abierto
Palabra clave:mutual authentication
Cryptanalysis
network security
session key agreement
smart cards
Criptoanálisis
autenticación mutua
seguridad en redes,
acuerdo de clave de sesión
tarjetas inteligentes
INGENIERÍA Y TECNOLOGÍA [7]
Descripción
Sumario:Recently, Chen-Hsiang-Shih proposed a new dynamic ID-based remote user authentication scheme. The authors claimed that their scheme was more secure than previous works. However, this paper demonstrates that their scheme is still unsecured against different kinds of attacks. In order to enhance the security of the scheme proposed by Chen-Hsiang-Shih, a new scheme is proposed. The scheme achieves the following security goals: without verification table, each user chooses and changes the password freely, each user keeps the password secret, mutual authentication, the scheme establishes a session key after successful authentication, and the scheme maintains the user’s anonymity. Security analysis and comparison demonstrate that the proposed scheme is more secure than Das-Saxena-Gulati’s scheme, Wang et al.’s scheme and Chen-Hsiang-Shih.