A new strong-password authentication scheme using one-way hash functions

  • C. -W. Lin
  • C. -S. Tsai
  • M. -S. Hwang
Information-Controlling Systems

DOI: 10.1134/S1064230706040137

Cite this article as:
Lin, C.W., Tsai, C.S. & Hwang, M.S. J. Comput. Syst. Sci. Int. (2006) 45: 623. doi:10.1134/S1064230706040137

Abstract

Recently, Sandirigama et al. have proposed an authentication scheme by the name of SAS and have claimed that it has the lowest storage, processing, and transmission overhead. In 2001, Lin et al. showed that the protocol is insecure and proposed an optimal strong-password authentication protocol called the OSPA protocol. However, Chen and Ku pointed out that both SAS and OSPA are vulnerable to stolen-verifier attack in 2002. Later, Lin, Shen, and Hwang proposed a modified OSPA protocol to repair the security law of OSPA protocol. In this paper, we propose a new strong-password authentication protocol that not only can withstand many possible attacks including a stolen-verifier attack, but that is also more efficient than the modified OSPA protocol.

Copyright information

© Pleiades Publishing, Inc 2006

Authors and Affiliations

  • C. -W. Lin
    • 1
    • 2
  • C. -S. Tsai
    • 1
    • 2
  • M. -S. Hwang
    • 1
    • 2
  1. 1.Department of Information ManagementChaoyang University of TechnologyTaiwanChina
  2. 2.Department of Management Information SystemNational Chung Hsing UniversityTaiwanChina

Personalised recommendations