Title :
Improvement on Security of a Practical Solution to Remote Authentication
Author :
Liu, Guoping ; Wang, Yingjie ; Li, Chunlai
Author_Institution :
Nat. Astron. Obs., Chinese Acad. of Sci., Beijing
Abstract :
Chien, Jan, and Tseng proposed a practical solution to remote authentication using smart cards in 2002. This scheme is efficient and provides mutual authentication between the user and the server. In this paper a security breach is shown to exist in Chien-Jan-Tseng scheme; an intruder can easily impersonate a legal user to login the remote server or impersonate the server to cheat the user. A nonce-based scheme is put forward to preclude these potential attacks. Also the improved solution can avoid the replay attacks of the user´s login message and the server´s authentication message
Keywords :
message authentication; network servers; Chien-Jan-Tseng scheme; mutual authentication; nonce-based scheme; remote authentication; remote server; replay attacks; security breach; security improvement; server authentication message; server impersonation; smart cards; user impersonation; user login message; Authentication; Costs; Cryptographic protocols; Cryptography; Electronic commerce; Law; Legal factors; Network servers; Observatories; Smart cards; Forged login; forged server authentication; nonce-based scheme; remote authentication; smart terminal;
Conference_Titel :
Networking, Sensing and Control, 2006. ICNSC '06. Proceedings of the 2006 IEEE International Conference on
Conference_Location :
Ft. Lauderdale, FL
Print_ISBN :
1-4244-0065-1
DOI :
10.1109/ICNSC.2006.1673265
