Title :
Cryptanalysis and improvement on an IC-card-based remote login mechanism
Author :
Kang, Baoyuan ; Han, Jinguang ; Wang, Qingju
Author_Institution :
Comput. Sci. & Software Instn., Tianjin Polytech. Univ., Tianjin, China
Abstract :
Wang et al. presented a remote password authentication scheme using IC (integrated Circuit)cards in 2004. Recently, Cheng et al. pointed that the Wang et al.´s scheme is unable to withstand the forgery attack. They consequently proposed a novel version to resist the forgery attack. Although Cheng et al. claimed that their scheme is secure against all known attacks and more practical in application than other IC-card-based authentication schemes, in this paper, we show that Cheng et al. scheme is vulnerable to the guessing attack, parallel session attack and key-compromise attack. To remedy these flaws, this paper proposes an improvement over Cheng et al. scheme with more security.
Keywords :
cryptography; integrated circuits; microprocessor chips; IC-card-based remote login mechanism; cryptanalysis; forgery attack; integrated circuit; password authentication; Authentication; Circuits; Computer science; Educational institutions; Embedded computing; Forgery; Protection; Resists; Security; Software; IC-card; cryptography; password authentication; remote login; security;
Conference_Titel :
Computer Engineering and Technology (ICCET), 2010 2nd International Conference on
Conference_Location :
Chengdu
Print_ISBN :
978-1-4244-6347-3
DOI :
10.1109/ICCET.2010.5486299
