• DocumentCode
    2634173
  • Title

    A New Parallel Session Attack to Khan-Zhang´s Authentication Scheme

  • Author

    Shieh, Wen-Gong ; Wang, Mei-Tzu

  • Author_Institution
    Dept. of Inf. Manage., Chinese Culture Univ., Taipei
  • fYear
    2008
  • fDate
    18-20 June 2008
  • Firstpage
    154
  • Lastpage
    154
  • Abstract
    In this paper we review Lin-Lai´ s authentication scheme and Khan-Zhang´ s improvement to Lin-Lai´ s scheme. We also review Rhee-Kwon-Lee´ s attack to Khan-Zhang´ s scheme. We find that Rhee-Kwon-Lee´ s attack can be realized but has to hazard the attack because the identity of the attacker may finally be recognized. We introduce a parallel session attack, which can also successfully impersonate a legal user, however, without having to hazard the possibility of exposing the attacker´ s identity. In addition, less information is required to lunch this attack. This illustrates the deeper vulnerability of Khan-Zhang´ s scheme.
  • Keywords
    biometrics (access control); message authentication; biometrics; parallel session attack; user authentication scheme; Authentication; Fingerprint recognition; Hazards; Information management; Intelligent sensors; Law; Legal factors; Resists; Robustness; Smart cards;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Innovative Computing Information and Control, 2008. ICICIC '08. 3rd International Conference on
  • Conference_Location
    Dalian, Liaoning
  • Print_ISBN
    978-0-7695-3161-8
  • Electronic_ISBN
    978-0-7695-3161-8
  • Type

    conf

  • DOI
    10.1109/ICICIC.2008.62
  • Filename
    4603343
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2634173