Abstract
In 2005, Liao et al. pointed out the weaknesses of Das et al.’s dynamic ID-based remote user authentication scheme using smart cards, and then proposed a slight modification thereof to overcome these weaknesses. The current paper, however, demonstrates that Liao et al.’s scheme is still vulnerable to reflection attacks, privileged insider’s attacks, and impersonation attacks by using lost or stolen smart card. Then, we present an improvement to the scheme in order to isolate such problems.
An erratum to this chapter can be found at http://dx.doi.org/10.1007/11915034_125.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Lamport, L.: Password Authentication with Insecure Communication. Communications of the ACM 24, 770–772 (1981)
Hwang, M.S., Lee, C.C., Tang, Y.L.: A Simple Remote User Authentication Scheme. Mathematical and Computer Modelling 36, 103–107 (2002)
Lee, C.C., Hwang, M.S., Yang, W.P.: Flexible Remote User Authentication Scheme Using Smart Cards. ACM Operating Systems Review 36(3), 46–52 (2002)
Li, L.H., Lin, I.C., Hwang, M.S.: A Remote Password Authentication Scheme for Multiserver Architecture Using Neural Networks. IEEE Transactions on Neural Networks 12(6), 1498–1504 (2001)
Shen, J.J., Lin, C.W., Hwang, M.S.: A Modified Remote User Authentication Scheme Using Smart Cards. IEEE Transactions on Consumer Electronics 49(2), 414–416 (2003)
Das, M.L., Saxena, A., Gulati, V.P.: A Dynamic ID-based Remote User Authentication Scheme. IEEE Transactions on Consumer Electronics 50(2), 629–631 (2004)
Liao, I.E., Lee, C.C., Hwang, M.S.: Security Enhancement for a Dynamic ID-based Remote User Authentication Scheme. In: IEEE Computer Society. Proceedings of the International Conference on Next Generation Web Services Practices (NWeSP 2005), pp. 437–440 (2005)
Menezes, A.J., Oorschot, P.C., Vanstone, S.A.: Handbook of Applied Cryptograph. CRC Press, New York (1997)
Ku, W.C., Chuang, H.M., Tsaur, M.J.: Vulnerabilities of Wu-Chieu’s Improved Password Authentication Scheme Using Smart Cards. IEICE Trans. Fundamentals E88-A(11), 3241–3243 (2005)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2006 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Yoon, EJ., Yoo, KY. (2006). Improving the Dynamic ID-Based Remote Mutual Authentication Scheme. In: Meersman, R., Tari, Z., Herrero, P. (eds) On the Move to Meaningful Internet Systems 2006: OTM 2006 Workshops. OTM 2006. Lecture Notes in Computer Science, vol 4277. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11915034_73
Download citation
DOI: https://doi.org/10.1007/11915034_73
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-48269-7
Online ISBN: 978-3-540-48272-7
eBook Packages: Computer ScienceComputer Science (R0)