Recently, several one time password authentication schemes have been proposed. However, most one-time password authentication schemes have security flaws. In this paper, a novel one-time password authentication and key agreement scheme (EAKAS) based on elliptic curve digital signature chain is developed. The proposed scheme has the following merits password or verification table is not required in the server; users can choose or change password; it can resist off-line dictionary attacks and achieves mutual authentication; it has no system clock synchronization and no constraint of transmission delay; it can resist replay attacks, man-in-the-middle attack and insider attack; it is sensitive to password error and strong in security restoration; the session keys in proposed scheme have the feature of freshness, confidentiality, known key security and forward security. Compared with the related schemes, our proposed scheme has better security and well suited to scenarios requiring a high level security.
[1]
Luo Shoushan.
Research on the Authenticated Key Agreement Protocol Based on Elliptic Curve Cryptography
,
2004
.
[2]
Hung-Min Sun,et al.
Attacks and Solutions on Strong-Password Authentication
,
2001
.
[3]
Akihiro Shimizu,et al.
Simple And Secure password authentication protocol, ver.2(SAS-2) (メディア工学)
,
2002
.
[4]
Neil Haller,et al.
The S/KEY One-Time Password System
,
1995,
RFC.
[5]
Shih-Fu Chang,et al.
Blind detection of photomontage using higher order statistics
,
2004,
2004 IEEE International Symposium on Circuits and Systems (IEEE Cat. No.04CH37512).
[6]
Matu-Tarow Noda,et al.
Simple and Secure Password Authentication Protocol (SAS)
,
2000
.