Cryptanalysis of Yang-Wang-Chang's password authentication scheme with smart cards

被引:0
|
作者
Pathan, Al-Sakib Khan [1 ]
Hong, Choong Seon [1 ]
机构
[1] Kyung Hee Univ, Dept Comp Engn, Seoul, South Korea
来源
10TH INTERNATIONAL CONFERENCE ON ADVANCED COMMUNICATION TECHNOLOGY, VOLS I-III: INNOVATIONS TOWARD FUTURE NETWORKS AND SERVICES | 2008年
关键词
cryptanalysis; forgery; smart card; authentication;
D O I
10.1109/ICACT.2008.4494091
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
In 2005, Yang, Wang, and Chang proposed an improved timestamp-based password authentication scheme in an attempt to overcome the flaws of Yang-Shieh's legendary timestamp-based remote authentication scheme using smart cards. After analyzing the improved scheme proposed by Yang-Wang-Chang, we have found that their scheme is still insecure and vulnerable to four types of forgery attacks. Hence, in this paper, we prove that, their claim that their scheme is intractable is incorrect Also, we show that even an attack based on Sun et al.'s attack could be launched against their scheme which they claimed to resolve with their proposal.
引用
收藏
页码:1618 / 1620
页数:3
相关论文
共 50 条
  • [1] Further cryptanalysis of a password authentication scheme with smart cards
    Sun, HM
    Yeh, HT
    IEICE TRANSACTIONS ON COMMUNICATIONS, 2003, E86B (04) : 1412 - 1415
  • [2] Cryptanalysis and Improvement of Zhuang-Chang-Wang-Zhu Password Authentication Scheme
    Chen, Shih-Ming
    Pan, Chiu-Shu
    Hwang, Min-Shiang
    INDUSTRIAL ENGINEERING, MACHINE DESIGN AND AUTOMATION (IEMDA 2014) & COMPUTER SCIENCE AND APPLICATION (CCSA 2014), 2015, : 118 - 123
  • [3] Remarks on Wang-Chang's password authentication scheme
    Chan, CK
    Cheng, LM
    ELECTRONICS LETTERS, 2001, 37 (01) : 22 - 23
  • [4] Cryptanalysis of Wang et al.'s remote user authentication scheme using smart cards
    Yoon, Eun-Jun
    Lee, Eun-Jung
    Yoo, Kee-Young
    PROCEEDINGS OF THE FIFTH INTERNATIONAL CONFERENCE ON INFORMATION TECHNOLOGY: NEW GENERATIONS, 2008, : 575 - +
  • [5] Cryptanalysis of security enhancement for the timestamp-based password authentication scheme using smart cards
    Yang, CC
    Yang, HW
    Wang, RC
    IEEE TRANSACTIONS ON CONSUMER ELECTRONICS, 2004, 50 (02) : 578 - 579
  • [6] Cryptanalysis and Improvement of a Password-Based Remote User Authentication Scheme without Smart Cards
    He, Debiao
    Wang, Ding
    Wu, Shuhua
    INFORMATION TECHNOLOGY AND CONTROL, 2013, 42 (02): : 170 - 177
  • [7] Weaknesses and improvements of Yang-Chang-Hwang's password authentication scheme
    Ku, WC
    Tsai, HC
    INFORMATICA, 2005, 16 (02) : 203 - 212
  • [8] Cryptanalysis and security enhancement of two password authentication schemes with smart cards
    Khan, Muhammad Khurram
    INMIC 2007: PROCEEDINGS OF THE 11TH IEEE INTERNATIONAL MULTITOPIC CONFERENCE, 2007, : 74 - 77
  • [9] Remote Password Authentication Scheme with Smart Cards and Biometrics
    Fan, Chun-I
    Lin, Yi-Hui
    Hsu, Ruei-Hau
    GLOBECOM 2006 - 2006 IEEE GLOBAL TELECOMMUNICATIONS CONFERENCE, 2006,
  • [10] Cryptanalysis of two password-based authentication schemes using smart cards
    Phan, RCW
    COMPUTERS & SECURITY, 2006, 25 (01) : 52 - 54
12345