论文信息 - Security Analysis on Remote User Authentication Methods

Security Analysis on Remote User Authentication Methods

Remote user authentication has been framed to provide security to the users by hiding their details with the help of some technique which can bear all the forgery attacks, but not reveal any details. All the users want CIA (confidentiality, integrity, and availability) to be there if they are working in a network. Various protocols have been proposed and implemented in literature. But the efficient tool is still lacking. Here we find that many of the schemes and protocols suggested are vulnerable to forgery attacks. We have found some problems in secure remote user authentication scheme based on smart card.

[1] Leslie Lamport,et al. Password authentication with insecure communication , 1981, CACM.

[2] Eun-Jun Yoon,et al. More Efficient and Secure Remote User Authentication Scheme using Smart Cards , 2005, 11th International Conference on Parallel and Distributed Systems (ICPADS'05).

[3] K. Kobara,et al. Simple Anonymous Password-Based Authenticated Key Exchange (SAPAKE), Reconsidered , 2017, IEICE Trans. Fundam. Electron. Commun. Comput. Sci..

[4] Zhenfu Cao,et al. Efficient Password-Based Authentication and Key Exchange Scheme Preserving User Privacy , 2006, WASA.

[5] Min-Shiang Hwang,et al. A new remote user authentication scheme using smart cards , 2000, IEEE Trans. Consumer Electron..

[6] Shiuh-Pyng Shieh,et al. Password authentication schemes with smart cards , 1999, Comput. Secur..

[7] Chien-Ming Chen,et al. Efficient Anonymous Password-Authenticated Key Exchange Scheme Using Smart Cards , 2017, ECC.

[8] Manoj Kumar,et al. A Secure Remote User Authentication Scheme with Smart Cards , 2008, IACR Cryptol. ePrint Arch..

[9] Joseph K. Liu,et al. Credential Wrapping: From Anonymous Password Authentication to Anonymous Biometric Authentication , 2016, AsiaCCS.

[10] Yuan Zhou,et al. Anonymous password-based key exchange with low resources consumption and better user-friendliness , 2012, Secur. Commun. Networks.

[11] Hung-Yu Chien,et al. A modified remote login authentication scheme based on geometric approach , 2001, J. Syst. Softw..