Cryptanalysis and Improvement of Sood et al.'s Dynamic ID-Based Authentication Scheme

机译：Sood等人基于动态ID的身份验证方案的密码分析和改进

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

Anonymity is one of the important properties of remote authenti cation schemes to preserve user privacy. Recently, Sood et al. showed that Wang et al.'s dynamic ID-based remote user authentication scheme fails to preserve user anonymity and is vulnerable to various attacks if the smart card is non-tamper resistant. Consequently, an improved version of dynamic ID-based authentication scheme was proposed and claimed that it is efficient and secure. In this paper, however, we will show that Sood et al.'s scheme still cannot preserve user anonymity under their assumption. In addition, their scheme is also vulnerable to the offline password guessing attack and the stolen verifier attack. To remedy these security flaws, we propose an enhanced authentication scheme, which covers all the identified weaknesses of Sood et al.'s scheme and is more secure and efficient for practical application environment.

机译：匿名性是远程身份验证方案以保护用户隐私的重要属性之一。最近，Sood等人。结果表明，Wang等人的基于动态ID的远程用户身份验证方案无法保留用户匿名性，并且如果智能卡具有防篡改功能，则很容易受到各种攻击。因此，提出了一种改进的基于动态ID的身份验证方案，并声称它是有效且安全的。但是，在本文中，我们将表明Sood等人的方案在他们的假设下仍然无法保留用户匿名性。此外，他们的方案还容易受到脱机密码猜测攻击和被盗验证程序攻击的攻击。为了解决这些安全漏洞，我们提出了一种增强的身份验证方案，该方案涵盖了Sood等人方案的所有已发现的弱点，并且对于实际应用环境更加安全有效。

著录项

来源
《Distributed computing and internet technology.》|2012年|p.141-152|共12页
会议地点 Bhubaneswar(IN);Bhubaneswar(IN)
作者
Chun-Guang Ma; Ding Wang; Qi-Ming Zhang;
展开▼
作者单位

College of Computer Science and Technology, Harbin Engineering University 145 Nantong Street, Harbin City 150001, China;

College of Computer Science and Technology, Harbin Engineering University 145 Nantong Street, Harbin City 150001, China,Automobile Management Institute of PLA, Bengbu City 233011, China;

College of Computer Science and Technology, Harbin Engineering University 145 Nantong Street, Harbin City 150001, China;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类计算机网络;计算机网络;
关键词
dynamic ID; authentication protocol; non-tamper resistant; smart card; cryptanalysis; anonymity;

机译：动态ID；认证协议；不防篡改；智能卡;密码分析匿名;

相似文献

外文文献
中文文献
专利

1. Security Improvement of Two Dynamic ID-based Authentication Schemes by Sood-Sarje-Singh [J] . Martínez-Peláez R., Rico-Novella F., Forné J., Journal of Applied Research and Technology . 2013,第5期

机译：Sood-Sarje-Singh改进了两种基于动态ID的身份验证方案的安全性
2. Cryptanalysis and Improvement of “An Efficient and Secure Dynamic ID-based Authentication Scheme for Telecare Medical Information Systems” [J] . Security and communication networks . 2014,第2期

机译：对“远程医疗医学信息系统的高效，安全，基于动态ID的身份验证方案”的分析和改进
3. Cryptanalysis and improvement of a DoS-resistant ID-based password authentication scheme without using smart card [J] . Wenbo Shi, Debiao He, Shuhua Wu International Journal of Information and Communication Technology . 2014,第1期

机译：不使用智能卡的基于DoS的基于ID的密码身份验证方案的密码分析和改进
4. Cryptanalysis of Khan et al.'s dynamic ID-based remote user authentication scheme [C] . Proceedings of the 2010 10th International Conference on Intelligent Systems Design and Applications . 2010

机译：对Khan等人基于动态ID的远程用户身份验证方案的密码分析
5. Design and cryptanalysis of a customizable authenticated encryption algorithm. [D] . Kelly, Matthew Joseph. 2014

机译：可定制的认证加密算法的设计和加密分析。
6. Cryptanalysis and Improvement of a Biometric-Based Multi-Server Authentication and Key Agreement Scheme [O] . Chengqi Wang, Xiao Zhang, Zhiming Zheng -1

机译：基于生物识别的多服务器身份验证和密钥协商方案的密码分析和改进
7. Security Improvement of Two Dynamic ID-based Authentication Schemes by Sood-Sarje-Singh [O] . R. Martínez-Peláez, F. Rico-Novella, J. Forné, 2013

机译：sood-sarje-singh对两种动态身份认证方案的安全性改进

Cryptanalysis and Improvement of Sood et al.'s Dynamic ID-Based Authentication Scheme

摘要

著录项

相似文献

相关主题

期刊订阅