Robust and Simple multi-server authenticati n protocol without verification table
Recently, Tsai et al. have proposed a multi-server authentication protocol. They claimed their protocol is secure and can withstand various attacks. But we found some security loopholes in the protocol. Accordingly, the current paper demonstrates that Tsai’s protocol does not provide perfect forward secrecy and is susceptible to a Denning-Sacco attack and Server spoofing. We then present an enhanced protocol to isolate such problems.
multi-server password authentication protocol Smart card Forward Secrecy
Hongfeng Zhu Tianhua Liu Jie Liu
Software College Shenyang Normal University Shenyang , China
国际会议
2009 Ninth International Conference on Hybrid Intelligent Systems(第九届混合智能系统国际会议 HIS 2009)
沈阳
英文
1-6
2009-08-12(万方平台首次上网日期,不代表论文的发表时间)