Security Analysis of Two Password Authentication Schemes
Recently,Rhee,Kwon and Lee proposed a practical authentication scheme only based on the common storage device.In the scheme the remote user does not need to use smart cards.It is convenient for the users to use a common storage device such as a universal serial bus memory.The scheme is easy to implement.However, this authentication scheme is vulnerable to impersonation attacks and middle man attacks.An attacker could impersonate legitimate users to login and access the remote server.In addition,we analyze the security of Fan-Chan-Zhangs scheme.The scheme suffers from replay attacks and impersonation attacks.
authentication replay password smart card impersonation attacks
Zuowen Tan
School of Information Technology,Jiangxi University of Finance & Economics,Nanchang 330013,Jiangxi,China;State Key Laboratory of Information Security,Institute of Software of Chinese Academy of Sciences,Beijing 100080,China;Key Lab of Network Security and
国际会议
第八届国际移动商务会议(Eighth International Conference on Mobile Business)
大连
英文
296-300
2009-06-27(万方平台首次上网日期,不代表论文的发表时间)