A Password and Smart Card Based User Authentication Mechanism for Multi-Server Environments
نویسندگان
چکیده
Secure user authentication without repeating registration is one of the important issues in multi-server networks that needs to be adequately addressed. Recently, two-factor (smart card and password) based remote user authentication protocols have been widely introduced due to their low constructional cost and convenient usability for the authentication purpose. In 2011, Chang and Cheng proposed a smart card and password based remote login mechanism for multi-server environments. However, in this paper, we found that ChangCheng's mechanism suffers from susceptibility to security attacks. As a result, we introduced an improved version of smart card based password authentication mechanism in multi-server networks. Compared with other related protocols, performance analysis shows that our proposed mechanism is still cost-efficient for the real application in multi-server environments.
منابع مشابه
An Enhanced Biometric-Based Three Factors User Authentication Scheme for Multi-server Environments
Authentication is an important and basic security service for many network based applications, which allows the registered user access remote services after the validity of his/her identity is verified by the remote server. Password, smart card and biometric are three frequently used factors in authentication, and some remote user authentication schemes for different environments had been prese...
متن کاملA Novel Dynamic Identity based Authentication Scheme for Multi- Server Environment using Smart Cards
Remote user authentication scheme with key agreement is a very practical mechanism to verify a remote user and then provide secure communication. Furthermore, many network environments have been becoming multi-server based due to the rapid growth of computer networks. Therefore, more and more researches have been focused on proposing smart card based remote authentication scheme with session ke...
متن کاملImprovement of smart card based password authentication scheme for multiserver environments
In multiserver (MS) environments, it is preferable for a remote user to login to different service provider servers by keying in the same password. Recently, Wang et al. proposed an improvement on the dynamic identity-based smart card authentication scheme of Liao and Wang for MS environments. Sandeep et al. improved the dynamic identity-based smart card authentication scheme of Hsiang et al. f...
متن کاملCryptanalysis of Tan's Improvement on a Password Authentication Scheme for Multi-server Environments
Smart cards have been applied on password authentication in recent years. A user can input his/her identity and password to require services from the remote server. There are various attacks through an insecure network to obtain a user’s information. Therefore, many schemes are proposed to guarantee secure communication. However, a lot of schemes are not secure. Recently, Tan proposed an improv...
متن کاملAn Efficient and Secure ID-based Remote User Authentication Scheme using Smart Card
The User Authentication mechanism technology has enjoyed strong growth in recent year, but security threats and facing attacks in authentication have grown equally fast. Today, there are many potential attacks that are targeted at authentication including insider attack, masquerade attack, server spoofing attack, parallel session attack, offline password guessing attack and many more. Recently,...
متن کامل