Improvement on Security of a Practical Solution to Remote Authentication

Author

Liu, Guoping ; Wang, Yingjie ; Li, Chunlai

Author_Institution

Nat. Astron. Obs., Chinese Acad. of Sci., Beijing

fYear

0

fDate

0-0 0

Firstpage

892

Lastpage

894

Abstract

Chien, Jan, and Tseng proposed a practical solution to remote authentication using smart cards in 2002. This scheme is efficient and provides mutual authentication between the user and the server. In this paper a security breach is shown to exist in Chien-Jan-Tseng scheme; an intruder can easily impersonate a legal user to login the remote server or impersonate the server to cheat the user. A nonce-based scheme is put forward to preclude these potential attacks. Also the improved solution can avoid the replay attacks of the user´s login message and the server´s authentication message

Keywords

message authentication; network servers; Chien-Jan-Tseng scheme; mutual authentication; nonce-based scheme; remote authentication; remote server; replay attacks; security breach; security improvement; server authentication message; server impersonation; smart cards; user impersonation; user login message; Authentication; Costs; Cryptographic protocols; Cryptography; Electronic commerce; Law; Legal factors; Network servers; Observatories; Smart cards; Forged login; forged server authentication; nonce-based scheme; remote authentication; smart terminal;

fLanguage

English

Publisher

ieee

Conference_Titel

Networking, Sensing and Control, 2006. ICNSC '06. Proceedings of the 2006 IEEE International Conference on

Conference_Location

Ft. Lauderdale, FL

Print_ISBN

1-4244-0065-1

Type

conf

DOI

10.1109/ICNSC.2006.1673265

Filename

1673265