Design and analysis of smart card based remote authentication protocol for Internet-based system

With the advance of smart card technology and the growing demand for secure applications in the community, many researches are being done on smart-card based systems from in-house applications to Internet-based applications. In this paper, we propose a comprehensive smart-card based authentication protocol and a secret key distribution scheme with failure handling. Compared with other similar protocols, our protocol can be embedded in the biometric-based local authentication system. Also, it can resist replaying attacks, perform mutual authentication, handle the smart card and the server failures properly without retaining the deficiency of those protocols.

[1]  Tai-Yun Kim,et al.  Smart card based off-line micropayment framework using mutual authentication scheme , 1998, IEEE GLOBECOM 1998 (Cat. NO. 98CH36250).

[2]  Min-Shiang Hwang,et al.  A new remote user authentication scheme using smart cards , 2000, IEEE Trans. Consumer Electron..

[3]  C.-C. Chang,et al.  Using smart cards to authenticate passwords , 1993, 1993 Proceedings of IEEE International Carnahan Conference on Security Technology.

[4]  Chin-Chen Chang,et al.  Remote password authentication with smart cards , 1991 .

[5]  Michael K. Reiter,et al.  Fair Exchange with a Semi-Trusted Third Party (extended abstract) , 1997, CCS.