원문정보
초록
영어
The design of the remote user authentication scheme for access to the service server is a very important issue in a multi-server environment. In particular, it is essential for mutual authentication and key agreement process between the user and the server. Proposed so far many schemes are focused to increase safety, reduce the communication time and calculation cost. On the other hand, there is a limit to overcome a variety of attacks. In recent years, Jain et al'.s proposed the authentication scheme, such as mutual authentication and session key establishment, smart card-based multi-server authentication scheme to withstand a variety of attacks. In this paper, I analyze that Jain et al'.s scheme is not secure against user impersonation attack, man-in-the-middle attack, DoS attack, reply attack etc.
목차
1. Introduction
2. Review of Jain et al.'s Authentication Scheme
2.1 Registration Phase
2.2 Login Phase
2.3 Authentication Phase
2.4 Password Change Phase
3. Security Analysis of Jain et al.’ Scheme
3.1 User impersonation attack
3.2 Man-in-the-middle Attack
3.3 Denial of Service Attack
3.4 Reply Attack
3.5 No Perfect Forward Secrecy
4. Analysis Result of Jain et al'.s Scheme
5. Conclusion
References