A hash-based strong-password authentication scheme without using smart cards-Reference-Cited by-同舟云学术

A hash-based strong-password authentication scheme without using smart cards

Published:2004-01 Issue:1 Volume:38 Page:29-34
ISSN:0163-5980
Container-title:ACM SIGOPS Operating Systems Review
language:en
Short-container-title:SIGOPS Oper. Syst. Rev.

Author:

Ku Wei-Chi¹

Affiliation:

1. Fu Jen Catholic University

Abstract

So far, many strong-password authentication schemes have been proposed, however, none is secure enough. In 2003, Lin, Shen, and Hwang proposed a strong-password authentication scheme using smart cards, and claimed that their scheme can resist the guessing attack, the replay attack, the impersonation attack, and the stolen-verifier attack. Later, Ku, Tsai, and Chen showed that Lin-Shen-Hwang's scheme suffers from a replay attack and a denial-of-service attack. Herein, we propose a more secure hash-based strong-password authentication scheme without using smart cards.

Publisher

Association for Computing Machinery (ACM)

Link

https://dl.acm.org/doi/pdf/10.1145/974104.974107

Reference17 articles.

1. S. Bellovin and M. Merritt "Augmented encrypted key exchange: A password-based protocol secure against dictionary attacks and password-file compromise " in Proceedings of the ACM Conference on Computer and Communications Security pp. 244--250 1993. 10.1145/168588.168618 S. Bellovin and M. Merritt "Augmented encrypted key exchange: A password-based protocol secure against dictionary attacks and password-file compromise " in Proceedings of the ACM Conference on Computer and Communications Security pp. 244--250 1993. 10.1145/168588.168618

2. Stolen-verifier attack on two new strong-password authentication protocols;Chen C. M.;IEICE Transactions on Communications,2002

3. L. Gong "Optimal authentication protocols resistant to password guessing attacks " in Proceedings of the 8th IEEE Computer Security Foundation Workshop pp. 24--29 1995. L. Gong "Optimal authentication protocols resistant to password guessing attacks " in Proceedings of the 8th IEEE Computer Security Foundation Workshop pp. 24--29 1995.

4. N. M. Hailer "The S/KEY (TM) one-time password system " in Proceedings of the Internet Society Symposium on Network and Distributed System Security pp. 151--158 1994. N. M. Hailer "The S/KEY (TM) one-time password system " in Proceedings of the Internet Society Symposium on Network and Distributed System Security pp. 151--158 1994.

5. Reparable key distribution protocols for Internet environments

Cited by 6 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. An Improved Password-Based Remote User Authentication Protocol without Smart Cards;Information Technology And Control;2013-06-11

2. A novel user’s authentication scheme for pervasive on-line media services;Telecommunication Systems;2010-01-15

3. An improved bilinear pairing based remote user authentication scheme;Computer Standards & Interfaces;2009-01

4. Efficient password authenticated key agreement using bilinear pairings;Mathematical and Computer Modelling;2008-06

5. A novel remote user authentication scheme using bilinear pairings;Computers & Security;2006-05