원문정보
초록
영어
Multi-server authentication schemes are very practical from a user point of view, since they allow a user to get access to different services on different servers with one single registration. Smart card based approaches lead to more secure systems because they offer two-factor authentication, based on the strict combination of user's password and the possession of the smart card. In this paper, we first show that a previously proposed scheme does not satisfy perfect forward secrecy and is not resistant against insider attacks. Next, we propose a very efficient smart card based authentication scheme, solely using xor and hash operations, which is resistant against dishonest users and servers. Also anonymity and untraceability of user's behaviour is avoided.
목차
1. Introduction
2. Related Work
3. Authentication Scheme from [2]
3.1. Different Phases
3.2. Security Weaknesses
4. Proposed Scheme
4.1. Registration Phase
4.2. User Login Phase
4.3. Authentication Phase
4.4. Password Change Phase
4.5. Revocation of User's Lost or Stolen Card
5. Security and Performance Analysis of Proposed Scheme
5.1. Security Evaluation
5.2. Performance Comparison
6. Conclusions
Acknowledgements
References