An Improvement of Liou et al.’s Authentication Scheme using Smart Cards

Sandeep K. Sood; Anil K. Sarje; Kuldip Singh

Call for Paper

January Edition

IJCA solicits high quality original research papers for the upcoming January edition of the journal. The last date of research paper submission is 20 December 2024

Submit your paper

Know more

The week's pick

SFLA-Based Line Balancing and Task Optimization in Master-Slave Controlled Hanger Transportation Systems for Garment Production

Duc Hoang Nguyen

Random Articles

Mining Multiple Text Sequence with Key Management

March

2014

Ensemble Learning Techniques for Appendicitis Prediction

Apr

2017

Opinion Mining Techniques on Social Media Data

May

2015

An Encoding Scheme to Support Efficient Searching and Linguistic Sorting for Bengali Texts

May

2012

Reseach Article

An Improvement of Liou et al.’s Authentication Scheme using Smart Cards

by Sandeep K. Sood, Anil K. Sarje, Kuldip Singh

International Journal of Computer Applications

Foundation of Computer Science (FCS), NY, USA

Volume 1 - Number 8

Year of Publication: 2010

Authors: Sandeep K. Sood, Anil K. Sarje, Kuldip Singh

10.5120/188-325

Sandeep K. Sood, Anil K. Sarje, Kuldip Singh . An Improvement of Liou et al.’s Authentication Scheme using Smart Cards. International Journal of Computer Applications. 1, 8 ( February 2010), 16-23. DOI=10.5120/188-325

@article{ 10.5120/188-325,

author = { Sandeep K. Sood, Anil K. Sarje, Kuldip Singh },

title = { An Improvement of Liou et al.’s Authentication Scheme using Smart Cards },

journal = { International Journal of Computer Applications },

issue_date = { February 2010 },

volume = { 1 },

number = { 8 },

month = { February },

year = { 2010 },

issn = { 0975-8887 },

pages = { 16-23 },

numpages = {9},

url = { https://ijcaonline.org/archives/volume1/number8/188-325/ },

doi = { 10.5120/188-325 },

publisher = {Foundation of Computer Science (FCS), NY, USA},

address = {New York, USA}

}

%0 Journal Article

%1 2024-02-06T19:45:10.477381+05:30

%A Sandeep K. Sood

%A Anil K. Sarje

%A Kuldip Singh

%T An Improvement of Liou et al.’s Authentication Scheme using Smart Cards

%J International Journal of Computer Applications

%@ 0975-8887

%V 1

%N 8

%P 16-23

%D 2010

%I Foundation of Computer Science (FCS), NY, USA

Abstract

In 2004, Das et al. proposed a dynamic identity based remote user authentication scheme. This scheme allows the users to choose and change their passwords freely and the server does not maintain any verification table. Das et al. claimed that their scheme is secure against stolen verifier attack, replay attack, forgery attack, dictionary attack, insider attack and identity theft. Unfortunately, many researchers demonstrated that Das et al.'s scheme is susceptible to various attacks. Furthermore, this scheme does not achieve mutual authentication and thus can not resist malicious server attack. In 2006, Liou et al. improved Das et al.'s scheme and claimed that the improved scheme achieves mutual authentication and is secure against aforementioned attacks. However, we found that Liou et al.'s scheme is susceptible to impersonation attack, malicious user attack, offline password guessing attack and man-in-the-middle attack. This paper presents a secure dynamic identity based authentication scheme using smart cards to resolve the aforementioned problems, while keeping the merits of different dynamic identity based authentication schemes.

References

L. Lamport. Password Authentication with Insecure Communication. Communications of the ACM, vol. 24, no. 11, pages 770-772. November 1981.
M.L. Das, A. Saxena and V.P. Gulati. A Dynamic ID-Based Remote User Authentication Scheme. IEEE Transactions on Consumer Electronics, vol. 50, no. 2, pages 629-631. May 2004.
H.Y. Chien and C.H. Chen. A Remote Authentication Scheme Preserving User Anonymity. In Proceedings of Advanced Information Networking and Applications, vol. 2, pages 245-248. March 2005.
I.E. Liao, C.C. Lee and M.S. Hwang. Security Enhancement for a Dynamic ID-Based Remote User Authentication Scheme. In Proceeding of Conference on Next Generation Web Services Practice, pages 437-440. July 2005.
E.J. Yoon and K.Y. Yoo. Improving the Dynamic ID-Based Remote Mutual Authentication Scheme. In Proceedings of OTM Workshops 2006, LNCS 4277, pages 499-507. July 2006.
Y.P. Liou, J. Lin and S.S. Wang. A New Dynamic ID-Based Remote User Authentication Scheme using Smart Cards. In Proceedings of 16th Information Security Conference, Taiwan, pages 198-205. July 2006.
H.C. Shih. Cryptanalysis on Two Password Authentication Schemes. Laboratory of Cryptography and Information Security, National Central University, Taiwan, July 2008.
W.C. Ku and S.T. Chang. Impersonation Attack on a Dynamic ID-based Remote User Authentication Scheme using Smart Cards. IEICE Transactions on Communications, vol. E88-B, no. 5, pages 2165-2167. May 2005.
P. Kocher, J. Jaffe and B. Jun. Differential Power Analysis. Proc. CRYPTO 99, Springer-Verlag, pages 388-397. August 1999.
T.S. Messerges, E.A. Dabbish and R.H. Sloan. Examining Smart-Card Security under the Threat of Power Analysis Attacks. IEEE Transactions on Computers, vol. 51, no. 5, pages 541-552. May 2002.

Index Terms

Computer Science

Information Sciences

Keywords

Network Security Cryptography Password Authentication Protocol Smart Card Hash Function