Weaknesses Cryptanalysis of Khan&#039;s Scheme and Improved Authentication Scheme preserving User Anonymity (Khan 인증기법의 취약점 분석과 개선된 사용자 익명성 제공 인증기법)

박미옥

Weaknesses Cryptanalysis of Khan's Scheme and Improved Authentication Scheme preserving User Anonymity

Journal of The Korea Society of Computer and Information
Abbr : JKSCI
2013, 18(2), pp.87-94
Publisher : The Korean Society Of Computer And Information
Research Area : Engineering > Computer Science

박미옥 ¹

¹성결대학교

Accredited

ABSTRACT

In this paper, we analyse the weaknesses of authentication scheme preserving user anonymity proposed by Khan et al in 2011 and we propose a new authentication schemes preserving user anonymity that improved these weaknesses. Khan et al's authentication scheme is vulnerable to insider attack and doesn't provide user anonymity to the server. Also, this scheme is still a weakness of wrong password input by mistake in spite of proposing the password change phase. In this paper,we will show that Khan et al's scheme is vulnerable to the stolen smart card attack and the strong server/user masquerade attack. The proposed authentication scheme propose the improved user anonymity, which can provide more secure privacy to user by improving these weaknesses.

KEYWORDS

User Anonymity, Smart Card, Insider Attack, Strong Masquerade attack, User Privacy

Citation status

* References for papers published after 2023 are currently being built.

[journal] L. Lamport / 1981 / Password Authentication with Insecure Communication / Communications of the ACM 24 : 770~772

[journal] C. C. Chang / 1991 / Remote password authentication with smart cards / IEEE Proceedings-Computers and Digital Techniques 38(3) : 165~168

[journal] H. S. Kim / 2003 / ID-based Password Authentication Scheme using Smart Cards and Fingerprints / ACM OperatingSystems Review 37(4) : 32~41

[journal] C. L. Hsu / 2004 / Security of Chien et al's remote user authentication scheme using smart cards / Computer Standards and Interfaces 26 : 167~169

[journal] E. J. Yoon / 2004 / Efficient Remote User Authentication Scheme base on Generalized ElGamal Signature Scheme / IEEE Transactions on Consumer Electronics 50(2) : 568~570

[journal] K. L. Das / 2004 / A dynamic ID-based remote user authentication scheme / IEEE Transactions on Consumer Electronics 50(2) : 629~631

[journal] M. K. Khan / 2011 / Cryptanalysis and security enhancement of a 'more efficient & secure dynamic ID-based remote user authentication scheme / Computer Communications 34(Issue.3) : 305~309

[journal] Y. Y. Wang / 2009 / A more efficient and secure dynamic ID-based remote user authentication scheme / Computer Communications 32 : 583~585

[journal] R. Madhusudhan / 2012 / Dynamic ID-based remote user password authentication schemes using smart cards : A review / Journal of Network and Computer Applications 35 : 1235~1248

[journal] C. S. Bindu / 2008 / Improved Remote User Authentication Scheme Preserving User Anonymity / IJCSNS International Journal of Computer Science and Network Security 8(3) : 62~66

[journal] H. C. Hsiang / 2009 / Improvement of the secure dynamic ID based remote user authentication scheme for multi-server environment / Computer Standard and Interfaces 31 : 1118~1123

KJCKorea
Journal Central

Journal of The Korea Society of Computer and Information 2023 KCI Impact Factor : 0.65

Weaknesses Cryptanalysis of Khan's Scheme and Improved Authentication Scheme preserving User Anonymity

ABSTRACT

KEYWORDS

Citation status

* References for papers published after 2023 are currently being built.

Journal of The Korea Society of Computer and Information 2023 KCI Impact Factor : 0.65

Weaknesses Cryptanalysis of Khan's Scheme and Improved Authentication Scheme preserving User Anonymity

ABSTRACT

KEYWORDS

Statistics

Tools

Issue List

Citation status

KCI Citation Counts (1)

REFERENCES (11) * References for papers published after 2023 are currently being built.

Search PDF

Citation

* References for papers published after 2023 are currently being built.