Improvement of the secure dynamic ID based remote user authentication scheme for multi-server environment |
| |
Authors: | Han-Cheng Wei-Kuan |
| |
Affiliation: | aDepartment of Computer Science, National Tsing Hua University, No. 101, Kuang Fu Rd, Sec. 2, 300 HsingChu, Taiwan, ROC |
| |
Abstract: | Recently, Liao and Wang proposed a secure dynamic ID based remote user authentication scheme for multi-server environment, and claimed that their scheme was intended to provide mutual authentication, two-factor security, replay attack, server spoofing attack, insider and stolen verifier attack, forward secrecy and user anonymity. In this paper, we show that Liao and Wang's scheme is still vulnerable to insider's attack, masquerade attack, server spoofing attack, registration center spoofing attack and is not reparable. Furthermore, it fails to provide mutual authentication. To remedy these flaws, this paper proposes an efficient improvement over Liao–Wang's scheme with more security. The computation cost, security, and efficiency of the improved scheme are well suited to the practical applications environment. |
| |
Keywords: | Authentication Dynamic ID Multi-server Mutual authentication Password Smart card |
本文献已被 ScienceDirect 等数据库收录! |
|