论文信息 - An improvement of the Yang-Shieh password authentication schemes

An improvement of the Yang-Shieh password authentication schemes

Recently, Yang and Shieh proposed two password authentication schemes by employing smart cards. One is a timestamp-based password authentication scheme and the other is a nonce-based password authentication scheme. In 2002, Chan and Cheng pointed out that Yang and Shieh's timestamp-based password authentication scheme was vulnerable to the forgery attack. However, in 2003, Sun and Yeh pointed out that Chan and Cheng's attack was unreasonable. At the same time, Sun and Yeh pointed out that Yang and Shieh's password authentication schemes were still vulnerable to the forgery attack. In this paper, we shall improve Yang and Shieh's schemes to resist Sun and Yeh's attack.

Chou Chen Yang | Ren-Chiun Wang | Ting Yi Chang

[1] Hung-Min Sun,et al. An efficient remote use authentication scheme using smart cards , 2000, IEEE Trans. Consumer Electron..

[2] Lee-Ming Cheng,et al. Cryptanalysis of a Timestamp-Based Password Authentication Scheme , 2002, Comput. Secur..

[3] Thomas D. Wu. The Secure Remote Password Protocol , 1998, NDSS.

[4] Leslie Lamport,et al. Password authentication with insecure communication , 1981, CACM.

[5] Hung-Min Sun,et al. An Efficient Remote User Authentication Scheme Using Smart Cards , 2000 .

[6] Min-Shiang Hwang,et al. A new remote user authentication scheme using smart cards , 2000, IEEE Trans. Consumer Electron..

[7] 葉禾田,et al. Further Cryptanalysis of password authentication schemes with smart cards , 2003 .

[8] I. Herstein,et al. Topics in algebra , 1964 .

[9] Cheng-Chi Lee,et al. A flexible remote user authentication scheme using smart cards , 2002, OPSR.

[10] Tzong-Chen Wu,et al. Remote login authentication scheme based on a geometric approach , 1995, Comput. Commun..

[11] Kefei Chen,et al. Cryptanalysis of a timestamp-based password authentication scheme , 2004, IACR Cryptol. ePrint Arch..

[12] Shiuh-Pyng Shieh,et al. Password authentication schemes with smart cards , 1999, Comput. Secur..