본문 바로가기
  • Home

Contents Error and Security Analysis of 'Security Analysis and Improvements of a Biometrics-based User Authentication Scheme Using Smart Cards'

  • Journal of The Korea Society of Computer and Information
  • Abbr : JKSCI
  • 2014, 19(10), pp.99-106
  • Publisher : The Korean Society Of Computer And Information
  • Research Area : Engineering > Computer Science

Mi-Og Park 1 Oh Gi Oug 2

1성결대학교
2가천대학교

Accredited

ABSTRACT

In this paper, we analyze weaknesses of the biometrics-based user authentication scheme proposed byAn. The result of analysis An’s authentication scheme by the login success scenario proposed in thispaper, if the attacker successes to get user’s random number, he/she can pass user authentication phaseof the legal server. Also the biometrics guessing scenario proposed in this paper shows the legal user’sthe biometric information is revealed in lost smart card. Since An’s authentication scheme submit user ID and biometrics in plain text to the server, it is very vulnerable to inner attack and it is not provide theuser anonymity to the server as well as the one to the third by user ID in plain text. Besides An’sauthentication scheme is contextual error too, due to this, it has weakness and so on that it did not checkthe validity of the smart card holder.

Citation status

* References for papers published after 2023 are currently being built.