Title :
Cryptanalysis of password scheme
Author :
Aboud, Sattar J.
Author_Institution :
Inf. Technol. Dept., Iraqi Council of Representatives, Baghdad, Iraq
Abstract :
In this paper, we review certain password scheme that using a smart card. The scheme verifies the logon password without password file. The idea of that scheme based on both integer factoring and discrete logarithm problem. Also, we describe some schemes which indicated there are two security problems in that password-typed smart card scheme, these are impersonation and offline password guessing attack. Then, we analyze the protection defenseless of the scheme. Assume that the hacker gains to calculate the modular exponentiation at both sides of the password scheme, with intercepted retrieve request, the hacker can create new access request with a successful enter into the remote server.
Keywords :
authorisation; cryptography; number theory; smart cards; access request creation; cryptanalysis; discrete logarithm problem; impersonation attack; integer factoring problem; intercepted retrieve request; logon password verification; modular exponentiation; offline password guessing attack; password-typed smart card scheme; remote server; security problems; Authentication; Cryptography; Password scheme; impersonate attack; offline guessing attack; smart card;
Conference_Titel :
Information Society (i-Society), 2012 International Conference on
Conference_Location :
London
Print_ISBN :
978-1-4673-0838-0
