Security Issues in Smart Card Based Password Authentication Scheme
نویسندگان
چکیده
To secure information from unauthorized access, various authentication schemes have been deployed. Among these, password based authentication schemes using smart card are widely used for various applications such as remote user login, online banking, ID verification, access control and e-commerce. It provides mutual authentication between user and server. However, previous schemes are vulnerable to various attacks and are neither efficient, nor user friendly. Today, there are many potential attacks that are targeted at authentication including masquerade attack, insider attack, parallel session attack, offline password guessing attack, server spoofing attack, and many more. This article portrays security requirements and possible attacks for smart card based password authentication scheme. In addition, various solutions for different attacks are also discussed.
منابع مشابه
Improving the Password-Based Authentication against Smart Card Security Breach
Password-based authentications using smart cards are very necessary between login users and a remote server. Smart card security breach threatens the security of password-based authentication schemes with smart cards. A password-based authentication scheme with smart cards against smart card security breach was proposed by C.T. Li et al. recently. However, it is noted that Li et al.'s scheme ne...
متن کاملA Novel Smart Card Authentication Scheme using Image Watermarking
One of the primary issues of information technology and communication is the security of information from unwanted frauds. For every transaction over insecure channel authentication is required. Since the rise of the Internet smart card authentication schemes have been widely used to avoid the problems related to traditional password based authentication schemes. However, most of the smart card...
متن کاملSecure and Efficient Smart Card Based Remote User Password Authentication Scheme
In distributed systems, the smart card based password authentication, as one of the most convenient and efficient two-factor authentication mechanisms, is widely used to ensure that the protected services are not available to unauthorized users. Recently, Li et al. demonstrated that the smart card based password authentication scheme proposed by Chen et al. cannot provide perfect forward secrec...
متن کاملAn Efficient Password Authentication Scheme for Smart Card
Yang-Wang-Chang proposed an improved timestamp associated password authentication scheme based on YangShieh, who had earlier proposed timestamp-based remote authentication scheme using smart cards. In this paper, we propose an efficient password authentication scheme with smart card applying RSA. The proposed scheme withstands most of the attacks with minimum computational cost.
متن کاملSmart-card-loss-attack and Improvement of Hsiang et al.’s Authentication Scheme
Due to the open environment, all network systems suffer from various security threats. The remote user authentication scheme is a secure mechanism to allow users obtaining a variety of information services through insecure channels. For efficiency and security, many remote user authentication schemes identify users with smart cards. However, many smart card based schemes are vulnerable to lots ...
متن کامل