Title :
A Security Enhancement on a Remote User Authentication Scheme Based on the Rabin Cryptosystem with Secure Password Updating
Author :
Tai, Wei-Liang ; Chang, Ya-Fen ; Li, Yuan-Fu ; Pan, Shun-Meng
Author_Institution :
Dept. of Biomed. Inf., Asia Univ. Taichung, Taichung, Taiwan
Abstract :
User authentication plays an important role to ensure that only authorized users can access resources. Kim et al. proposed a remote user authentication scheme based on the Rabin cryptosystem to resist well-known attack such as offline password guessing attack, unlimited online password guessing attack and server impersonation. In their scheme, a user will be issued a smart card for authentication, and the computation load of the smart card is light. Although their scheme possesses superior properties, we find that it suffers from one fatal security flaw such that a legal user cannot access resources after password change phase. In this paper, we first show the security flaw and propose an improvement with secure password updating.
Keywords :
authorisation; public key cryptography; resource allocation; Rabin cryptosystem; legal user; password change phase; remote user authentication scheme; secure password update; security enhancement; security flaw; smart card; users authorization; Authentication; Computers; Cryptography; Law; Servers; Smart cards; authentication; smart card; the Rabin cryptosystem;
Conference_Titel :
Advanced Information Networking and Applications Workshops (WAINA), 2012 26th International Conference on
Conference_Location :
Fukuoka
Print_ISBN :
978-1-4673-0867-0
DOI :
10.1109/WAINA.2012.13
