Title :
Further Cryptanalysis of ´A User Friendly Remote User Authentication Scheme with Smart Cards´
Author :
Khan, Muhammad Khurram
Author_Institution :
Bahria Univ., Karachi
Abstract :
Recently, Wu and Chieu proposed ´a user friendly remote user authentication scheme with smart cards´. We point out that their scheme is vulnerable and susceptible to the attacks and can easily be cryptanalyzed. Their scheme provides only unilateral authentication (only client authentication) and there is no mutual authentication between user and remote system, so their scheme suscepts from the server spoofing attack. Their scheme also suffers from the impersonation attack and an adversary can easily impersonate a valid user. Furthermore, we describe that an adversary can login into the system by copying the data of stolen or lost smart card of a legitimate user. Moreover, we discuss that Wu and Chieu´s scheme has poor reparability, which makes it infeasible to implement.
Keywords :
cryptography; smart cards; cryptanalysis; server spoofing attack; smart cards; user authentication; user friendly remote; Authentication; Biometrics; Communication channels; Computational efficiency; Computer science; Computer security; Forgery; Mobile computing; Public key; Smart cards;
Conference_Titel :
Information and Emerging Technologies, 2007. ICIET 2007. International Conference on
Conference_Location :
Karachi
Print_ISBN :
978-1-4244-1247-1
Electronic_ISBN :
978-1-4244-1247-1
DOI :
10.1109/ICIET.2007.4381318
