IMPROVEMENT ON THE DYNAMIC ID-BASED REMOTE USER AUTHENTICATION SCHEME
In 2004, Das et al. proposed a dynamic ID-based remote user authentication scheme. Their scheme allows users to select and update their passwords freely, and the server needs not maintain a verifier table. In this paper, we show that their scheme is not secure. Though there are several improvement schemes proposed to fix the flaws. However, we show that all improvement schemes have deficiency on dynamic merit Finally, we propose an improvement scheme to enhance the security. The improvement scheme has dynamic merit such that adversary cannot trace the users.
Password authentication Dynamic ID Guessing attack Impersonation attack
YUNG-CHENG LEE GEENG-KWEI CHANG WEN-CHUNG KUO JUNG-LU CHU
Department of Electrical Engineering, WuFeng Institute of Technology, Chiayi, Taiwan Department of Computer Science and Information Engineering, National Formosa University, Yunlin, Tai The Institute of Opto-Mechatronics and Materials, WuFeng Institute of Technology, Chiayi, Taiwan
国际会议
2008 International Conference on Machine Learning and Cybernetics(2008机器学习与控制论国际会议)
昆明
英文
3283-3287
2008-07-12(万方平台首次上网日期,不代表论文的发表时间)