An enhanced user authentication scheme for multi-server Internet services

Tsaur, Woei‐Jiunn; Wu, Chia Chun; Lee, Wei‐Bin

doi:10.1016/j.amc.2004.11.033

Cited by 45 publications

(35 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…On the one hand, there are several schemes in multi-server environment were proposed [14,16,17],the schemes which can be suitable to multi-server environment have not been efficiently solved.On the other hand,these scheme are password-based and the smart card is used in it to store some user information.…”

Section: Introductionmentioning

confidence: 99%

“…In 2001,Tsaur [14] proposed a smart card based password authentication scheme in multi-server environments,which is the first scheme for password authentication scheme in multi-server environments.In Tsaur's scheme,an authorized user can login multi-servers with a single password chosen by him/herself,and the server need not maintain any verification table at all.Later,L.H.Li et al [16] and E.J.Yoon [17] et alproposed two new multi-server authentication schemes using neural network.But these schemes have some drawbacks such as they must spend much time in training neural networks,and constructing and maintaining neural networks in every single server will add up extra manpower and cost.Compared with these schemes,Tsaur's scheme does not need the cost constructing,training and maintaining neural networks.It is more efficient than the schemes in [16][17].…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

A Provable Security Biometric Password Multi-server Authentication Scheme with Smart Card

Yang

2010

2010 Second International Symposium on Data, Privacy, and E-Commerce

View full text Add to dashboard Cite

In this paper,a new biometric password multi-server authentication scheme with smart card is proposed.To the best knowledge of us,this is the first biometric password authentication scheme which can be used in the multi-server environment and the distributed network.This scheme combines the advantages of password and biometrics,which can strengthen the protocol's securities and has properties as mutual authentication,key agreement.Henceforth,it is more secure than the schemes in existence.This scheme can be proven secure in the random oracle model.

show abstract

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

A Provable Security Biometric Password Multi-server Authentication Scheme with Smart Card

Yang

2010

2010 Second International Symposium on Data, Privacy, and E-Commerce

View full text Add to dashboard Cite

show abstract

“…This makes password authentication extremely inconvenient. In recent years, there are many convenient password authentication schemes [15]- [19] developed in multi-server environments. These schemes used either a nonce or a timestamp technique to prevent the replay attack.…”

Section: Introductionmentioning

confidence: 99%

A Secure Smart-Card-based Password Authenticated Key Agreement Scheme in Multi-server Environments

Tsaur

2010

2010 IEEE Second International Conference on Social Computing

Self Cite

View full text Add to dashboard Cite

Remote user authentication is used to validate the legitimacy of a remote log-in user. Due to the rapid growth of computer community, many network architectures are becoming multi-server based. Recently, there have been many remote password authentication schemes proposed for securing multi-server environments. These schemes used either a nonce or a timestamp technique to prevent the replay attack. However, using the nonce technique to withstand the replay attack is potentially susceptible to the man-in-the-middle attack. Alternatively, when employing the timestamp method to secure remote password authentication, it will encounter the difficulty of implementing time synchronization. In order to solve both the above two issues, this paper proposes a self-verified timestamp technique to not only securely achieve password authenticated key agreement but also avoid the difficulty of implementing time synchronization in multi-server environments. On the other hand, the function of service period management can allow servers to update the list of illegal users easily and periodically. Therefore, we also further develop the scheme of service period management in this paper.

show abstract

“…Although the Internet provides a convenient way for information sharing, the access to valuable information must be restricted to authorized users. Nowadays, many authentication schemes have been proposed to ensure the security of remote access [3] [4] [5] [8] [10] [11] [13] [15] [16] [17] [18].…”

Section: Introductionmentioning

confidence: 99%

An efficient and privacy protection multi-server authentication scheme for low-cost RFID tags

Juang

Tseng

Shue

2010

2010 International Computer Symposium (ICS2010)

View full text Add to dashboard Cite

Due to the wide use of the Internet and information technology, there are many attractive services provided in the network environment. Since the Internet is a public environment, a user must pass the authentication before using these services. Also, due to the reduced cost of the RFID tags, RFID technologies are widely used in various information applications. In this paper, we propose a mutual authentication RFID scheme for multiserver environment. Since in our proposed scheme, the tag only needs random number generation and one-way hash function operations, the computation cost for the tags is low. Our scheme does not need to store any verification table in the server and the registration center. Our proposed scheme can withstand all well-known security attacks, and can achieve anonymity for the tag.

show abstract

An enhanced user authentication scheme for multi-server Internet services

Cited by 45 publications

References 8 publications

A Provable Security Biometric Password Multi-server Authentication Scheme with Smart Card

A Provable Security Biometric Password Multi-server Authentication Scheme with Smart Card

A Secure Smart-Card-based Password Authenticated Key Agreement Scheme in Multi-server Environments

An efficient and privacy protection multi-server authentication scheme for low-cost RFID tags

Contact Info

Product

Resources

About