教師資料查詢 | 類別: 期刊論文 | 教師: 洪文斌 Horng Wen-bing (瀏覽個人網頁)

標題:Cryptanalysis of Two Dynamic ID-Based Remote User Authentication Schemes for Preserving User Privacy
學年102
學期1
出版(發表)日期2013/09/01
作品名稱Cryptanalysis of Two Dynamic ID-Based Remote User Authentication Schemes for Preserving User Privacy
作品名稱(其他語言)
著者Peng, Jian-Wen; Horng, Wen-Bing; Chiu, Ying-Ching; Liu, Chao-Sheng
單位淡江大學資訊工程學系
出版者新北市淡江大學
著錄名稱、卷期、頁數Journal of Applied Science and Engineering=淡江理工學刊 16(3), pp.277-286
摘要Remote user authentication is an essential part in electronic commerce to identify legitimate users over the Internet. However, how to protect user privacy in the authentication has become an important issue recently. Therefore, many secure authentication schemes with smart cards have been proposed. In this paper, we will analyze the security weaknesses of two recently proposed authentication schemes for preserving user privacy. First, Chang et al. (2011) proposed a robust and efficient remote user authentication scheme to provide user anonymity. However, this scheme fails to protect user privacy in terms of anonymity and traceability. In addition, it is vulnerable to the server counterfeit attack and it does not provide perfect forward secrecy for session keys. Furthermore, if the smart card is lost, it will suffer from the offline password guessing attack as well as the user impersonation attack. Second, Wen and Li (2012) recently presented an improved dynamic ID-based authentication scheme with key agreement. However, this scheme is vulnerable to traceability. In addition, it does not support perfect forward secrecy for session keys. Furthermore, the insecure offline password change phase and online secret renewal phase will result in the denial of service attack.
關鍵字Authentication; Cryptanalysis; Perfect Forward Secrecy; Session Key; Smart Card
語言英文
ISSN1560-6686
期刊性質國際
收錄於EI;
產學合作
通訊作者Horng, Wen-Bing
審稿制度
國別中華民國
公開徵稿
出版型式紙本;
相關連結
SDGs
Google+ 推薦功能,讓全世界都能看到您的推薦!